This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi,
As mentioned - I am getting errors with the SharePoint certification chain within Chrome.
The error appears to be occurring because there is a SHA-1 certificate in the certificate chain for SharePoint.
Can Microsoft please assist with rectifying this?
A group of Microsoft Products and technologies used for sharing and managing content, knowledge, and applications.
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.
Hi Craig,
Thanks for your sharing.
@everyone,
Please check if the issue is fixed on Chrome.
If not, please clear the Chrome browser cache as I mentioned above>Close the browser>Restart the browser and sign into the SharePoint Online site to see if it works.
Thanks,
Felix
I am also experiencing this issue with SharePoint Online using Chrome. I dug through the certificates and the issue was in the first two in the Certification Path: DigiCert Global Root and Baltimore CyterTrust Root were both using sha1 encryption. I deleted both of those certificates from my local certificate stores and reloaded the page. The encryption for DigiCert Global Root now shows as md5RSA, but Baltimore CyberTrust Root still shows as sha1 (sha1RSA specifically).
Again, as others have noted, this affects the *.sharepoint.com certificate that Microsoft owns. There isn't anything we customers can do other than request Microsoft to fix it.
Hi Yoga,
This is an office 365 issue as the certificate is using a SHA-1 certificate
https://security.googleblog.com/2016/11/sha-1-certificates-in-chrome.html
Thanks
Craig
Hi,
I know that Microsoft have started to deprecate SHA-1... But this is within Microsoft's own architecture.
Thanks,
Brodie
Hi Brodie,
In June 2016, Office 365 began deprecating support for SHA-1 certificates for outbound or inbound connections. All devices that connect to Office 365 need to support SHA-2. If you are currently using a certificate with SHA-1 in the certificate chain, please update the chain to use SHA-2 (Secure Hash Algorithm 2) or a stronger hashing algorithm. For more details, you can refer to this article.
Besides, I would like to confirm the following information:
1. What operating system are you using?
2. The version of Chrome you are using.
3. Do you encounter the same issue in IE browser? Check if you are using the same certificate in IE browser, and provide the version of IE.
4. Detailed steps about how you encounter the issue.
Regards,
Yoga