How to debug ERR_PROXY_CERTIFICATE_INVALID?

I ended up filing a bug report for this issue and their suggestion was to:

1. Disable the proxy configuration in chrome
2. Hit the proxy server as if it was a webpage
3. The conventional error dialog will display allowing you to debug the certificate error.

For example, if your proxy is listening to proxy.com on port 1234 then you should hit https://proxy.com:1234/ in Chrome without the use of a proxy.

Secondly, I ended up figuring out the problem with my particular certificate. My proxy server does not have a public hostname, just a public IP address.

I was generating the certificate like this:

openssl req -x509 -newkey rsa:4096 -sha256 -days 365 -nodes -keyout server.key -out server.crt -subj /CN=<ip> -addext subjectAltName=DNS:<hostname>,IP:<ip>

Where <hostname> was some incorrect guess of what the hostname should be.

It turns out that if Chrome references a proxy server by IP address (not hostname) then you must omit the DNS entry from the SSL certificate. The following command-line worked for me:

openssl req -x509 -newkey rsa:4096 -sha256 -days 365 -nodes -keyout server.key -out server.crt -subj /CN=<ip> -addext subjectAltName=IP:<ip>

Related videos on Youtube

07 : 28

Debugging JavaScript - Chrome DevTools 101

Google Chrome Developers

611

04 : 31

Fix error NET::ERR CERT DATE INVALID - Your connection is not private - Windows 7 - 2021

IT Learning

172

01 : 23

How to debug FastCGI sent in stderr Primary script unknown while reading response header from upstr

Solutions Cloud

4

03 : 40

Your Connection is Not Private | NET::ERR_CERT_COMMON_NAME_INVALID error in Google Chrome

SP SKYWARDS

2

00 : 35

Unable to generate assets to build and debug. OmniSharp server is not running.

david barba

1

Author by

Gili

Email: cowwoc at bbs dot darktech dot org.

Updated on September 18, 2022