Back

Google’s Chrome browser has started the process of ending support for Symantec SSL/TLS certificates. This includes companies owned by Symantec including Thawte, Verisign, Equifax, RapidSSL.and GeoTrust

Chrome 66 is ending support for Symantec certificates issued before the 1st June 2016 on the following schedule:

• The ‘Canary’ release already ended support for these certificates. It was released on January 20th, 2018.
• The Beta release for Chrome 66 will be released on March 15th.
• The Stable release for Chrome 66 will be released on April 17th.

If you are running a Symantec certificate issued before the 1st June 2016, and you do not replace that certificate, then from April 17th onwards this is what your site will look like to visitors:




As you can see, the error is described as NET::ERR_CERT_SYMANTEC_LEGACY, meaning that your website\web app is using a legacy Symantec certificate that is no longer supported.

Starting with Google Chrome version 70, all remaining Symantec certificates will stop working, including those issued after the 1st June 2016. Chrome 70’s release schedule is set for the 16th October.

To check if your Symantec certificate will be affected by this change, you can visit this page and enter your website’s hostname in the form provided: https://www.websecurity.symantec.com/support/ssl-checker.

Make sure you just enter the hostname and remove the https:// prefix ie www.e-solutionsltd.com

Note : If the checker returns 'Certificate not issued by Symantec, GeoTrust, Thawte, or RapidSSL' you are not affected by the issue.