Google Chrome Error Code ERR_CERT_SYMANTEC_LEGACY: How to Fix It

Easy 10-30 minutes Medium Severity Verified June 2026
Summarize with ChatGPTSummarize with ClaudeSummarize with Perplexity Add as Preferred Source on Google
Error Code
ERR_CERT_SYMANTEC_LEGACY
Brand
Google Chrome
Product Type
browser
Severity
Medium
DIY Difficulty
Easy
Estimated Fix Time
10-30 minutes
The ERR_CERT_SYMANTEC_LEGACY error in Google Chrome means the website you are trying to visit is using an SSL/TLS certificate that was issued by Symantec (or one of its subsidiaries like GeoTrust, RapidSSL, or Thawte) before a specific cutoff date that Google no longer trusts. Chrome began distrusting these older Symantec-issued certificates starting in 2018 because of documented issues with how Symantec operated its certificate authority. If you see this error, the site's SSL certificate is outdated and Chrome is blocking the connection to protect you from potential security risks.
Ad

Tools You'll Need

How to Fix Error Code ERR_CERT_SYMANTEC_LEGACY

  1. Confirm the Exact Error Message

    Do not proceed past this error on websites where you plan to enter passwords, credit card numbers, or any personal information. The blocked certificate means the site's identity cannot be verified.

  2. Update Google Chrome to the Latest Version

  3. Check Your System Date and Time

  4. Clear Chrome's SSL State and Cache

  5. Disable Chrome Extensions Temporarily

  6. Test with a Different Browser or Network

  7. Contact the Website Owner

    Never instruct end users to bypass certificate errors by clicking 'Advanced > Proceed to site' on websites handling sensitive data. This workaround should only be used by developers testing their own local or staging environments.

  8. Bypass the Error Temporarily (Developers Only)

    Using --ignore-certificate-errors disables ALL certificate validation in Chrome. This is a serious security risk. Only use this method on an isolated test machine and never browse other websites in this mode.
Ad

When to Call a Professional

If you own the affected website and are not comfortable replacing an SSL certificate through your hosting provider or server configuration, contact your web hosting support team or a web developer. They can reissue the certificate, install it correctly, and verify the full certificate chain is properly configured. If your business relies on the website for e-commerce or handling sensitive user data, prioritize this fix immediately as the error will affect all Chrome users visiting your site.

Frequently Asked Questions

Is it safe to bypass the ERR_CERT_SYMANTEC_LEGACY error in Chrome?
It is generally not safe to bypass this error on sites where you enter personal information, passwords, or payment details. Chrome blocks these certificates because Symantec's certificate authority was found to have issued certificates improperly. On informational-only sites where no data is submitted, the risk is lower, but the underlying issue remains that the site's identity cannot be properly verified.
Why did Google stop trusting Symantec SSL certificates?
Google and other browser vendors determined that Symantec had failed to properly validate thousands of SSL certificates over many years, violating CA/Browser Forum rules. As a result, Google announced in 2017 that Chrome would progressively distrust Symantec-issued certificates, with full distrust of legacy certs (issued before specific cutoff dates) rolled out in Chrome 70 in 2018. DigiCert acquired Symantec's certificate business and reissued affected certificates under trusted infrastructure.
I own the website — how do I fix ERR_CERT_SYMANTEC_LEGACY for my visitors?
You need to replace your existing SSL certificate with a new one issued by a currently trusted Certificate Authority. Options include DigiCert, Sectigo, GlobalSign, or the free Let's Encrypt service. Log in to your hosting control panel, revoke your old certificate, generate a new Certificate Signing Request (CSR), purchase or obtain a new certificate, and install it on your server. Most hosting providers offer one-click SSL installation through their control panels.
Does ERR_CERT_SYMANTEC_LEGACY affect all browsers or only Chrome?
This specific error code is a Chrome-only designation. However, Mozilla Firefox also distrusts legacy Symantec certificates and will show its own certificate error (SEC_ERROR_UNTRUSTED_ISSUER or similar) on the same affected sites. Microsoft Edge, which shares Chrome's underlying engine (Chromium), will also display a similar certificate error. The root cause — the distrusted certificate — affects all modern browsers, not just Chrome.
Can clearing my browser cache fix ERR_CERT_SYMANTEC_LEGACY permanently?
Clearing your browser cache and SSL state can sometimes resolve the error if it was caused by outdated cached certificate data from a site that has already updated its certificate. However, if the website has not yet replaced its legacy Symantec certificate, clearing the cache will not permanently fix the issue — the error will return every time you visit that site until the website owner installs a valid, trusted certificate.

Related Error Codes