| Back | Main view

Enable IMiS/wScan over HTTPS in Google Chrome

Product:IMiS/wScan
Release:1.8.2210
Date:11/27/2023

Case: IMiS/wScan can stop working with error ERR_SSL_KEY_USAGE_INCOMPATIBLE or NET::ERR_CERT_INVALID on Google Chrome browser when using HTTPS protocol.

Description:

Google Chrome version 117 started blocking RSA certificates with key usage extension not set up properly.

For example, IMiS/wScan fails when IMiS/Capture Service uses self-signed certificate created on the Security tab of the Settings dialog.






This can be averted by disabling key usage enforcement using the Google Chrome RSAKeyUsageForLocalAnchorsEnabled policy.

To disable RSA certificate key usage extension enforcement open Registry and create DWORD entry

RSAKeyUsageForLocalAnchorsEnabled

with value

0

under the registry key

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Google\Chrome

Restart Google Chrome browser.

You should now be able to use IMiS/wScan web application with IMiS/Capture Service self-signed certificate.


For more information about this topic see also:

Chrome Enterprise policy list: RSAKeyUsageForLocalAnchorsEnabled
https://chromeenterprise.google/policies/#RSAKeyUsageForLocalAnchorsEnabled

Require X.509 key usage extension for RSA certificates chaining to local roots
https://support.google.com/chrome/a/answer/10314655?sjid=16333568074522698164-EU#chromBre116&zippy=%2Cchrome

Related Documents:

Database 'IMiS Knowledge database', View 'By Product', Document 'Configuring HTTPS in IMiS/wScan and Samples' Configuring HTTPS in IMiS/wScan and Samples

| Back | Main view

Copyright © Imaging Systems Ltd, 2024