These instructions are valid as of v 61.
- Point your browser at the site with the self-signed cert.
- Allow chrome to load the site
- Bring up the developer console and switch to the security tab
- Be sure the only error is that there is no, or an untrusted cert signer. Other errors are possible (like no SANs defined, for instance). You might as well go ahead and fix any other errors before proceeding, or this will all be for nothing. The most common issue with Chrome is that no Subject Alt Names (SANs) are defined. Chrome will not trust your cert without these.
- Click "View Certificate" button
- Drag the certificate icon to your desktop or a finder window. This will export the cert to a file.
- Open up your keychain manager, be sure the Keychain Viewer window is open, and drag the exported cert into the System folder
- Right click the cert, select "GetInfo"
- Expand the "Trust" menu
- Change "When using this certificate" to "Always Trust"
- Close out the Keychain app
- You'll probably need to restart chrome