Require online OCSP/CRL checks for local trust anchors

Setting the policy to True means Google Chrome always performs revocation checking for successfully validated server certificates signed by locally installed CA certificates. If Google Chrome can't get revocation status information, Google Chrome treats these certificates as revoked (hard-fail).

Setting the policy to False or leaving it unset means Google Chrome uses existing online revocation-checking settings.

Supported on: At least Microsoft Windows 7 or Windows Server 2008 family

Registry PathSoftware\Policies\Google\ChromeOS
Value NameRequireOnlineRevocationChecksForLocalAnchors
Enabled Value1
Disabled Value0


Administrative Templates (Computers)

Administrative Templates (Users)