vCenter

 View Only
  • 1.  Chrome v105+ has broken Enhanced Authentication Plugin

    Posted Dec 16, 2022 08:52 AM

    Anyone else noticed this? Anyone got a fix? v104 or lower has no issues



  • 2.  RE: Chrome v105+ has broken Enhanced Authentication Plugin

    Posted Dec 16, 2022 09:27 AM

    It seems to be related to the fact Chrome does not automatically accept the plugins self signed certificate @ https://vmware-plugin:8094. Where Firefox does.

    Every VM with the plugin installed has its own. So cannot import into the certificate store.



  • 3.  RE: Chrome v105+ has broken Enhanced Authentication Plugin

    Posted Dec 16, 2022 09:32 AM

    #allow-insecure-localhost

    This chrome flag could of worked. But VMware adds vmware-plugin dns record into the host file. So Chrome does not ack that its a localhost/127.0.0.1 request for the flag to permit use.



  • 4.  RE: Chrome v105+ has broken Enhanced Authentication Plugin
    Best Answer

    Posted Dec 16, 2022 09:47 AM

    Figured it out. Chrome introduced its own root certificate store in v105. So you can disable this via GPO/policy to use Windows root store to which the VMware Plugin automatically adds its certificate.

    https://chromeenterprise.google/policies/?policy=ChromeRootStoreEnabled

    GPO

    Computer Configuration / Policies / Administrative Templates / Google / Google Chrome / Determines whether the Chrome Root Store and built-in certificate verifier will be used to verify server certificates = Set to "Disabled"



  • 5.  RE: Chrome v105+ has broken Enhanced Authentication Plugin

    Posted Dec 26, 2022 03:04 PM

    I have solved this problem by openning https://vmware-plugin:8094 in chrome and typing "thisisunsafe"

    Disabling Chrome Root Store is not a long-term solution as it will no longer be possible from version 113.



  • 6.  RE: Chrome v105+ has broken Enhanced Authentication Plugin

    Posted Jan 13, 2023 03:50 PM

    I found a easier solution that doesn't require disabled Chrome's certificate store. Simply add the address of "https://vmware-plugin:8094/" to the allowed sites to show insecure content. You can get there from settings > Privacy and Security > Site Settings > Additional Content Settings > Insecure Content.