i have the same question.
We have changed the self-signed certificates with certificates from a microsoft enterprise CA, but chrome shows the same certifcate warnings.
vCenter Server with an embedded Platform Services Controller 22.214.171.124000
ESXi, 6.7.0, 13006603
Chrome shows the vcsa website https://vcsa.domain.tdl/ui completly secure when the ClientIntegrationPlugin 126.96.36.19982 is not installed on the admin pc.
The Warnings starts with installation of the ClientIntegrationPlugin.
IE and Firefox shows no certificate warnings.
no one other has this question?