Require online OCSP/CRL checks for local trust anchors

When this setting is enabled, Google Chrome will always perform revocation checking for server certificates that successfully validate and are signed by locally-installed CA certificates.

If Google Chrome is unable to obtain revocation status information, such certificates will be treated as revoked ('hard-fail').

If this policy is not set, or it is set to false, then Google Chrome will use the existing online revocation checking settings.

Supported on: At least Microsoft Windows 7 or Windows Server 2008 family

Registry PathSoftware\Policies\Google\ChromeOS
Value NameRequireOnlineRevocationChecksForLocalAnchors
Enabled Value1
Disabled Value0


Administrative Templates (Computers)

Administrative Templates (Users)