I cannot trust this root certificate in win10

5 posts, 0 answers
  1. 泽强
    泽强 avatar
    1 posts
    Member since:
    Jul 2018

    Posted 18 Jul 2018 Link to this post

    Log info:

    14:12:13:8724 !Fiddler.CertMaker> Unable to auto-trust root: System.Security.Cryptography.CryptographicException: 访问控制列表(ACL)结构无效。

       在 System.Security.Cryptography.X509Certificates.X509Store.Add(X509Certificate2 certificate)
       在 .‰.TrustRootCertificate() 位置 C:\JenkinsHome\jobs\FiddlerReleaseBuild\workspace\Fiddler2\Common\Core\DefaultCertProvider.cs:行号 972


     Seek help sincerely.


  2. Alexander
    Alexander avatar
    383 posts

    Posted 23 Jul 2018 Link to this post


    Based on the exception message I've found this information on MSDN. It seems it is not issue of Fiddler, but rather machine configuration.

    As a workaround you can export the Fiddler root certificate to the desktop and trust it manually. In order to do so, please, follow there steps:
    1. Open Fiddler, go to Tools -> Options -> HTTPS -> Actions -> Export Root Certificate to Desktop
    2. Double click the certificate
    3. Select if you want to install the certificate in the user store or the machine one
    4. Select "Place all certificates in the following store"
    5. Click on "Browse..." and select "Trusted Root Certification Authorities"
    6. Click Next and Finish
    7. New dialog with "The import was successful" message should appear

    Progress Telerik
    Do you want to have your say when we set our development plans? Do you want to know when a feature you care about is added or when a bug fixed? Explore the Telerik Feedback Portal and vote to affect the priority of the items
  3. Richard
    Richard avatar
    1 posts
    Member since:
    Oct 2018

    Posted 22 Oct 2018 in reply to Alexander Link to this post

    I followed the steps suggested & go the 'Import Successful' message - but then got no useful decrypted body text: Instead, I got this message:

    "............Encrypted HTTPS traffic flows through this CONNECT tunnel. HTTPS Decryption is enabled in Fiddler, so decrypted sessions running in this tunnel will be shown in the Web Sessions list"

    I have also added tls1.1 & 1.2 to the accepted protocols list 

    Thanks in advance

  4. Keem
    Keem avatar
    2 posts
    Member since:
    Aug 2020

    Posted 03 Aug in reply to Alexander Link to this post

    I did everything, it still doesn't work
  5. Nick Iliev
    Nick Iliev avatar
    433 posts

    Posted 04 Aug Link to this post

    Hello Everyone,


    Richard, as far as I understand you are now able to capture traffic but it is encoded. If that is the case, try using the Decode button from the toolbar to enable decoding and decompressing the captured traffic.

    Keem Star, there is not much information provided for your specific case. Consider describing your issue with step-by-step instructions on what exactly went wrong while importing the root certificate.


    Nick Iliev
    Progress Telerik

Back to Top