A widespread authentication issue is currently affecting second-generation Google Chromecast and Chromecast Audio devices, preventing users from casting content to their displays. The problem stems from an expired security certificate that Google implemented for device authentication, which reached its end of validity on March 9, 2025, at 1644 UTC after a 10-year period. The incident comes at a time when Google has been actively expanding its security infrastructure, including recent enhancements to its Play Protect system and the implementation of stronger biometric verification requirements for mobile authentication.
Users attempting to cast content from their mobile devices to affected Chromecast models are encountering “untrusted device” errors. The issue specifically impacts devices from the 2015 product line, including both the second-generation Chromecast and Chromecast Audio models. The authentication challenge emerges as the tech industry moves toward more secure, passwordless solutions, with Google being among the leaders in promoting passkey adoption alongside other major tech companies.
Google has acknowledged the problem and is actively developing a solution. The company has explicitly advised users against performing factory resets on their devices, as this action will not resolve the authentication error. Users are instructed to await further guidance from Google regarding remediation steps.
A temporary workaround has emerged, involving adjusting the connected phone’s date settings to a time before March 9, 2025, and then attempting to reauthorize the Chromecast. However, the solution’s effectiveness varies among users and may require multiple attempts.
The authentication issue arose from an expired intermediate certificate authority that Google had established for device verification purposes. Similar certificate-related disruptions have previously affected other major technology companies, including Microsoft and Cisco, highlighting the broader industry challenge of managing long-term security credentials. The incident underscores the growing importance of robust device verification systems in the IoT ecosystem, where companies are increasingly exploring innovative solutions such as NFT-based verification methods for device authentication.
The affected Chromecast models, released in 2015, represented significant advances in Google’s streaming technology at the time, offering improved Wi-Fi connectivity and faster streaming capabilities compared to their predecessors. These devices have remained functional for nearly a decade until this certificate expiration. The longevity of these devices highlights the importance of long-term security planning in IoT device development, particularly as the industry continues to evolve with new authentication standards and security protocols.
Sources: TalkAndroid, Android Central, The Register
Follow Us