I cannot trust this root certificate in win10

1 Answer 5669 Views
Windows
泽强
Top achievements
Rank 1
泽强 asked on 18 Jul 2018, 06:15 AM

Log info:

14:12:13:8724 !Fiddler.CertMaker> Unable to auto-trust root: System.Security.Cryptography.CryptographicException: 访问控制列表(ACL)结构无效。

   在 System.Security.Cryptography.X509Certificates.X509Store.Add(X509Certificate2 certificate)
   在 .‰.TrustRootCertificate() 位置 C:\JenkinsHome\jobs\FiddlerReleaseBuild\workspace\Fiddler2\Common\Core\DefaultCertProvider.cs:行号 972

 

 Seek help sincerely.

 

1 Answer, 1 is accepted

Sort by
0
Alexander
Telerik team
answered on 23 Jul 2018, 08:40 AM
Hi,

Based on the exception message I've found this information on MSDN. It seems it is not issue of Fiddler, but rather machine configuration.

As a workaround you can export the Fiddler root certificate to the desktop and trust it manually. In order to do so, please, follow there steps:
1. Open Fiddler, go to Tools -> Options -> HTTPS -> Actions -> Export Root Certificate to Desktop
2. Double click the certificate
3. Select if you want to install the certificate in the user store or the machine one
4. Select "Place all certificates in the following store"
5. Click on "Browse..." and select "Trusted Root Certification Authorities"
6. Click Next and Finish
7. New dialog with "The import was successful" message should appear

Regards,
Alexander
Progress Telerik
Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
Richard
Top achievements
Rank 1
commented on 22 Oct 2018, 09:44 AM

I followed the steps suggested & go the 'Import Successful' message - but then got no useful decrypted body text: Instead, I got this message:

"............Encrypted HTTPS traffic flows through this CONNECT tunnel. HTTPS Decryption is enabled in Fiddler, so decrypted sessions running in this tunnel will be shown in the Web Sessions list"

I have also added tls1.1 & 1.2 to the accepted protocols list 

Thanks in advance

Keem
Top achievements
Rank 1
commented on 03 Aug 2020, 02:49 PM

I did everything, it still doesn't work
Nick Iliev
Telerik team
commented on 04 Aug 2020, 06:16 AM

Hello Everyone,

 

Richard, as far as I understand you are now able to capture traffic but it is encoded. If that is the case, try using the Decode button from the toolbar to enable decoding and decompressing the captured traffic.

Keem Star, there is not much information provided for your specific case. Consider describing your issue with step-by-step instructions on what exactly went wrong while importing the root certificate.

 

Regards,
Nick Iliev
Progress Telerik

Thenamesarehere
Top achievements
Rank 1
commented on 21 Aug 2020, 03:14 AM

Bro thank you soo much i thought i could not get this to work :))))))
rahul
Top achievements
Rank 1
commented on 17 May 2024, 08:59 PM

Hello I am getting similar issue with both windows 7 and 10. And the awkward part is if I try to re produce it via composer, it gives HTTP 408 if nothing is selected in option. And if there is any option ticked, then it works fine. This seems to be like a bug from your end. How to resolve?
Nick Iliev
Telerik team
commented on 20 May 2024, 05:20 AM

Hey Rahul,

 

It's not entirely clear if you are experiencing the originally mentioned issue (being unable to install and trust Fiddler's CA) or the issue reported by Richard (a specific session not being decrypted). Please provide more details about the specific case you are facing by adding step-by-step details of the actions you are taking and the received versus expected output.

Tags
Windows
Asked by
泽强
Top achievements
Rank 1
Answers by
Alexander
Telerik team
Share this question
or