chromium/components/policy/resources/templates/policy_definitions/CertificateManagement/CADistrustedCertificates.yaml

caption: TLS certificates that should be distrusted by <ph name="PRODUCT_NAME">$1<ex>Google Chrome</ex></ph> for server authentication
default: null
desc: |-
  A list of certificate public keys that should be distrusted by <ph
  name="PRODUCT_NAME">$1<ex>Google Chrome</ex></ph> for TLS server
  authentication.

  The policy value is a list of base64-encoded X.509 certificates. Any
  certificate with a matching SPKI (SubjectPublicKeyInfo) will be distrusted.
example_value:
  - MIIB/TCCAaOgAwIBAgIUQthnWVsd1jWpUCNBf/uILjXC+t4wCgYIKoZIzj0EAwIwVDELMAkGA1UEBhMCVVMxETAPBgNVBAgMCFZpcmdpbmlhMQ8wDQYDVQQHDAZSZXN0b24xITAfBgNVBAoMGEludGVybmV0IFdpZGdpdHMgUHR5IEx0ZDAeFw0yMzEyMDcxNjE5NTVaFw0yMzEyMjExNjE5NTVaMFQxCzAJBgNVBAYTAlVTMREwDwYDVQQIDAhWaXJnaW5pYTEPMA0GA1UEBwwGUmVzdG9uMSEwHwYDVQQKDBhJbnRlcm5ldCBXaWRnaXRzIFB0eSBMdGQwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAQ9Akav/KB0aVA9FM1QK4J1CEHn5rFOyY/nxcr5HG3+Fom0Kwu5zTR/kz9eOYgtG/1NmCzbiEKaULDfzA8V9aJ7o1MwUTAdBgNVHQ4EFgQUq37bLKiuw8Y/G+rurMf46hw7EekwHwYDVR0jBBgwFoAUq37bLKiuw8Y/G+rurMf46hw7EekwDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAgNIADBFAiEA/JhtLSgtVOcXkgFJ9V5Vb6lhGdiKQFfzO9wTxPeCxCECIFePYPucys2n/r9MOBMHiX/8068ssv+uceqokzUg0mAb
features:
  dynamic_refresh: true
  per_profile: true
owners:
- [email protected]
- [email protected]
- [email protected]
- [email protected]
- [email protected]
schema:
  items:
    type: string
  type: array
future_on:
- chrome.linux
- chrome.mac
- chrome.win
- android
- chrome_os
tags: []
type: list