I cannot trust this root certificate in win10

1 Answer 1566 Views
Windows
泽强
Top achievements
Rank 1
泽强 asked on 18 Jul 2018, 06:15 AM

Log info:

14:12:13:8724 !Fiddler.CertMaker> Unable to auto-trust root: System.Security.Cryptography.CryptographicException: 访问控制列表(ACL)结构无效。

   在 System.Security.Cryptography.X509Certificates.X509Store.Add(X509Certificate2 certificate)
   在 .‰.TrustRootCertificate() 位置 C:\JenkinsHome\jobs\FiddlerReleaseBuild\workspace\Fiddler2\Common\Core\DefaultCertProvider.cs:行号 972

 

 Seek help sincerely.

 

1 Answer, 1 is accepted

Sort by
0
Alexander
Telerik team
answered on 23 Jul 2018, 08:40 AM
Hi,

Based on the exception message I've found this information on MSDN. It seems it is not issue of Fiddler, but rather machine configuration.

As a workaround you can export the Fiddler root certificate to the desktop and trust it manually. In order to do so, please, follow there steps:
1. Open Fiddler, go to Tools -> Options -> HTTPS -> Actions -> Export Root Certificate to Desktop
2. Double click the certificate
3. Select if you want to install the certificate in the user store or the machine one
4. Select "Place all certificates in the following store"
5. Click on "Browse..." and select "Trusted Root Certification Authorities"
6. Click Next and Finish
7. New dialog with "The import was successful" message should appear

Regards,
Alexander
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
Richard
Top achievements
Rank 1
commented on 22 Oct 2018, 09:44 AM

I followed the steps suggested & go the 'Import Successful' message - but then got no useful decrypted body text: Instead, I got this message:

"............Encrypted HTTPS traffic flows through this CONNECT tunnel. HTTPS Decryption is enabled in Fiddler, so decrypted sessions running in this tunnel will be shown in the Web Sessions list"

I have also added tls1.1 & 1.2 to the accepted protocols list 

Thanks in advance

Keem
Top achievements
Rank 1
commented on 03 Aug 2020, 02:49 PM

I did everything, it still doesn't work
Nick Iliev
Telerik team
commented on 04 Aug 2020, 06:16 AM

Hello Everyone,

 

Richard, as far as I understand you are now able to capture traffic but it is encoded. If that is the case, try using the Decode button from the toolbar to enable decoding and decompressing the captured traffic.

Keem Star, there is not much information provided for your specific case. Consider describing your issue with step-by-step instructions on what exactly went wrong while importing the root certificate.

 

Regards,
Nick Iliev
Progress Telerik

Thenamesarehere
Top achievements
Rank 1
commented on 21 Aug 2020, 03:14 AM

Bro thank you soo much i thought i could not get this to work :))))))
Tags
Windows
Asked by
泽强
Top achievements
Rank 1
Answers by
Alexander
Telerik team
Share this question
or