Solution ID : SO29058
When internal users connect to a private domain through Chrome (or other Chromium-based application), Chrome shows a warning that the connection is “not private” or “untrusted”, even though the connection is secure and the domain is internally known and trusted within your company.
Your connection is not private
Chrome may change the specific message, but the message will indicate that the connection is “not private” or “untrusted” and may specifically reference Certificate Transparency.
Chrome may show the “not private” or “untrusted” warning because:
If you have certificate and subdomain information ("private.symantec.com") that must be kept private, apply the CT exemption policy to corporate-managed devices with Chrome/Chromium-based applications so internal users don’t see “untrusted” warnings for specified domains. The CT exemption policy disables the CT check in Chrome when the configured device connects to a specified domain.
Note: The CT exemption policy does not globally exempt an SSL certificate from CT checks – only for devices that are configured with the policy.
Chrome/Chromium policy configuration for Windows, Mac, Android, Linux: http://www.chromium.org/administrators/policy-list-3#CertificateTransparencyEnforcementDisabledForUrls.
Policy templates for enterprise provisioning:
Learn more about Certificate Transparency.