RSA Authentication Manager Security Console and Operations Console are no longer accessible after upgrading to Google Chrome 117 and higher. The following ERR_SSL_PROTOCOL_ERROR is seen. These consoles are accessible from both Firefox and Edge browsers.
 

Errors: "This site can't provide a secure connection" and "ERR_SSL_PROTOCOL_ERROR".

The RSA Authentication Manager root certificate used by the Security Console and Operations Consoles is using Signature Algorithm SHA-1. 

 

Google reports that it is removing support for signature algorithms using SHA-1 for server signatures during the TLS handshake is removed in Chrome 117. See also this article regarding Chrome 117 having deprecated support for TLS SHA-1 server signatures ​​​​​.

Please review the following options to upgrade the SHA-1 certificate to SHA-256.

1. The self-signed certificate with SHA-1 can be upgraded to SHA-256. Here are the steps to Upgrade Internal Authentication Manager Certificates to SHA-256

2. A third party SHA-1 certificate should be replaced with a new one which is signed by an internal/external trusted CA with SHA-256. Here are the steps to replace the console certificate.