I had the same issue on Windows 10. It happens to be due to the AWS not reading the internet proxy setting from the Windows registry. Fixed same error by setting the environment variables HTTP_PROXY and HTTPS_PROXY to the corporate internet proxy. Hope it helps somebody!
This seems like a new problem, because I am sure this used to work. I'm using the Amazon Web Services command-line interface (CLI). This makes https calls using Python. If Fiddler is running, I can see 200 responses that show that tunneling is working, and I get the correct results for the command. However, if then enable decryption, things go south. I get a string of 5 tunnel requests (all with 200 responses):
CONNECT iam.amazonaws.com:443 HTTP/1.0
Host: iam.amazonaws.com:443
A SSLv2-compatible ClientHello handshake was found. Fiddler extracted the parameters below.
Version: 3.1 (TLS/1.0)
etc.
After 5 attempts, the command itself on the command line returns this error:
[Errno 1] _ssl.c:504: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
Is there something I can do to configure Fiddler _with_ HTTPS decryption that will work with the AWS CLI?
CONNECT iam.amazonaws.com:443 HTTP/1.0
Host: iam.amazonaws.com:443
A SSLv2-compatible ClientHello handshake was found. Fiddler extracted the parameters below.
Version: 3.1 (TLS/1.0)
etc.
After 5 attempts, the command itself on the command line returns this error:
[Errno 1] _ssl.c:504: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed
Is there something I can do to configure Fiddler _with_ HTTPS decryption that will work with the AWS CLI?