Is is possible to disable Certificate Transparency (audit log checking) of certificates in Chrome?

google-chrome security ssl-certificate certificate-authority

Solution 1:

Assuming that the example you're pointing to is actually the one about "The site is using outdated security settings", and not "does not have public audit records", about 99.99% sure that your problem isn't CT, for several reasons:

  • It is my understanding that only CA certificates in the system trust store are subject to CT validation; locally-managed CA certificates don't require CT treatment (for pretty much exactly the reason you've got).
  • Failing CT validation only matters for EV certificates at the present time, and the only negative impact is that the certificate loses the EV "green bar" treatment.

The error about "using outdated security settings" actually means that your MitM proxy is issuing SHA-1-based certificates with expiry dates in the far future, which probably isn't such a winning idea.

Related

Sensu only handling every 180 occurrences
What, exactly, is the SCCM client doing when it installs an .msi for a system?
Heroku Error R14 (Memory quota exceeded) using node.js
Bypass Nginx cache when receiving a specific request
How to debug ip xfrm rules
AD: Domain migration or renaming?
pfSense not forwarding DNS to concerned VPS
DHCP Server with multiple network interfaces and different subnets
Disable or Uninstall Malicious Software Removal Tool on Windows Server KB890830 Automatic Maintenance
Should /usr/local/bin be owned by root?
How does Docker deal with OOM killer and memory limits?
why linux reuse 'time_wait' port?