OneDrive Cannot Connect Securely to This Page
🔍 WiseChecker

OneDrive Cannot Connect Securely to This Page

by

You see the error message “OneDrive cannot connect securely to this page” when you try to open a file or sign in through the OneDrive app or web interface. This error indicates that the connection between your device and Microsoft’s servers is being blocked or interrupted by a security certificate issue, outdated software, or network interference. The problem is not with your internet connection itself but with how the connection is validated. This article explains the root causes of the certificate-related error and provides step-by-step fixes to resolve it permanently.

Key Takeaways: Fixing the OneDrive Secure Connection Error

  • Windows Certificate Store Reset: Clears corrupted or outdated certificates that block OneDrive’s secure connection.
  • OneDrive Reset Command: Running %localappdata%\Microsoft\OneDrive\OneDrive.exe /reset reinitializes the sync client without deleting files.
  • Internet Time and Date Sync: Incorrect system time causes certificate validation failures; sync via Settings > Time & Language > Date & time.

ADVERTISEMENT

Why OneDrive Shows a Secure Connection Error

OneDrive uses Transport Layer Security (TLS) 1.2 or 1.3 to encrypt data between your device and Microsoft 365 servers. When the error “cannot connect securely” appears, the TLS handshake has failed. This failure occurs because your Windows device cannot validate the server’s digital certificate. Common triggers include:

  • Outdated or corrupt root certificates: Windows relies on a trusted root certificate store. If a required Microsoft certificate is missing or corrupted, the connection is blocked.
  • System date and time mismatch: Certificates have validity windows. If your PC clock is off by hours or years, the certificate appears expired or not yet valid.
  • Antivirus or firewall interference: Security software performing SSL inspection can replace Microsoft’s certificate with its own, which OneDrive does not trust.
  • Old TLS protocol version: If TLS 1.0 or 1.1 is forced on your network, OneDrive will refuse the connection.

The error is most common on Windows 10 devices that have not received recent cumulative updates. Windows 11 systems are less affected but can still encounter the issue after a third-party security tool update.

Steps to Resolve the Secure Connection Error

Perform these steps in the order listed. Test OneDrive after each step to isolate the fix.

Step 1: Sync Your System Clock

  1. Open Date & Time Settings
    Press Windows key + I to open Settings. Go to Time & Language > Date & time.
  2. Enable Automatic Time Sync
    Toggle “Set time automatically” to On. Toggle “Set time zone automatically” to On.
  3. Force a Manual Sync
    Click Sync now under “Additional settings.” Wait 30 seconds, then close Settings.

Step 2: Reset the Windows Certificate Store

  1. Open Certificate Manager
    Press Windows key + R, type certmgr.msc, and press Enter.
  2. Navigate to Trusted Root Certification Authorities
    In the left pane, expand Trusted Root Certification Authorities, then select Certificates.
  3. Locate Microsoft Certificates
    Scroll to find certificates issued by “Microsoft Root Certificate Authority 2011” or “Microsoft RSA TLS CA 01.” If none appear, your store is missing critical entries.
  4. Run the Automatic Root Certificates Update
    Open Command Prompt as administrator. Type certutil -generateSSTFromWU root.sst and press Enter. This downloads the latest root certificates from Windows Update.
  5. Import the Updated Certificates
    In Certificate Manager, right-click Trusted Root Certification Authorities, select All Tasks > Import. Browse to the root.sst file created in the previous step and complete the wizard.

Step 3: Reset OneDrive Sync Client

  1. Close OneDrive Completely
    Right-click the OneDrive cloud icon in the system tray and select Settings > Account > Unlink this PC. Confirm unlinking.
  2. Run the Reset Command
    Press Windows key + R, paste %localappdata%\Microsoft\OneDrive\OneDrive.exe /reset, and press Enter. A command window flashes briefly. Wait 2 minutes.
  3. Restart OneDrive
    Press Windows key, type OneDrive, and open the app. Sign in again with your work or school account.

Step 4: Disable SSL Inspection in Antivirus Software

  1. Open Your Antivirus Application
    Locate settings related to web protection, SSL scanning, or HTTPS inspection.
  2. Disable HTTPS Scanning Temporarily
    Toggle off the option labeled “Scan HTTPS connections” or “SSL/TLS inspection.” Apply the change.
  3. Test OneDrive
    Open OneDrive and attempt to access a file. If the error disappears, add an exclusion for onedrive.com and sharepoint.com in your antivirus settings.

Step 5: Enable TLS 1.2 in Internet Options

  1. Open Internet Properties
    Press Windows key + R, type inetcpl.cpl, and press Enter.
  2. Go to the Advanced Tab
    Scroll down to the Security section.
  3. Check TLS 1.2
    Ensure “Use TLS 1.2” is checked. Uncheck TLS 1.0 and TLS 1.1 if they are checked. Click Apply and OK.

ADVERTISEMENT

If OneDrive Still Shows the Error After the Main Fix

OneDrive Cannot Connect Securely on a Corporate Network

Corporate networks often use a proxy server or SSL decryption appliance. If your company uses a proxy, configure OneDrive to bypass it for Microsoft endpoints. Open Internet Properties > Connections > LAN settings. Under Proxy server, click Advanced and add onedrive.com and sharepoint.com to the Exceptions list. Contact your IT department to confirm that the proxy certificate is installed in the Trusted Root Certification Authorities store on your device.

OneDrive Web Interface Shows the Error but Desktop App Works

This indicates a browser-specific issue. Clear your browser’s SSL state. In Chrome, go to Settings > Privacy and security > Security > Manage certificates. Click the Trusted Root Certification Authorities tab and remove any duplicate or expired Microsoft certificates. Restart the browser and sign in to OneDrive again.

OneDrive Error Persists After Windows Update

A recent Windows update may have replaced a critical root certificate with an older version. Open Windows Update settings, click View update history, and uninstall the most recent Quality Update. Reboot and re-run the certificate update command from Step 2. Then reinstall the update.

Files On-Demand vs Always Keep on This Device: Connection Impact

Item Files On-Demand Always Keep on This Device
Description Files appear in File Explorer but download only when opened Files are fully downloaded and stored locally
Connection requirement Requires a secure TLS connection to download each file on demand Requires initial download only; offline access works without connection
Impact of secure connection error Files cannot be opened or previewed because each access triggers a TLS handshake Already downloaded files remain accessible; new file creation may fail
Recommended action Fix the secure connection error first; then enable Files On-Demand Set critical folders to Always Keep on This Device as a temporary workaround

After resolving the secure connection error, you can now access OneDrive files without interruption. Test the connection by opening a file from the OneDrive folder in File Explorer and then from the web portal. For ongoing protection, configure Windows to install updates automatically by going to Settings > Windows Update > Advanced options and enabling “Receive updates for other Microsoft products.” This ensures your certificate store stays current. As an advanced tip, use Group Policy to deploy the Microsoft Root Certificate Program to all domain-joined devices, preventing this error across your organization.

ADVERTISEMENT

← Back to WiseChecker HomeMore in OneDrive

🔍 Recommended for You