Trust Root Certificate

This article provides additional information about the options for installing the Fiddler Everywhere root trust certificate in your operating system. The proper certificate enablement is a crucial step when using Fiddler to capture secure system traffic. Note that the certificate installation is not mandatory if you choose the preconfigured browser capturing option.

Install & Trust the Root Certificate (Quickstart)

The quickstart certificate installation options of Fiddler Everywhere for each platform are part of the getting started step-by-step tutorials:

Install & Trust the Root Certificate (Settings)

Fiddler Everywhere provides the option to manually go through the certificate installation and enablement of the HTTPS system capture.

As Fiddler Everywhere is a cross-platform web-debugging proxy available for Windows, macOS, and Linux, you need to follow the respective approach for installing the tool.

For Windows

  1. Start Fiddler Everywhere and go to Settings > HTTPS.

  2. Click the Trust Root Certificate button. Confirm your choice and add the certificate in the popup that appears.

  3. Enable the capturing of the HTTPS traffic by selecting the Capture HTTPS traffic checkbox. Click Save.

  4. Back on the main Fiddler Everywhere screen, enable the Live Traffic toggle to start capturing HTTP and HTTPS system traffic.

For macOS

  1. Start Fiddler Everywhere and go to Settings > HTTPS. Click the Trust Root Certificate button.

  2. In the window that appears, enter your machine administrative credentials.

    Enter Keychain credentials to trust the root certificate

  3. Enable the capturing of the HTTPS traffic by selecting the Capture HTTPS traffic checkbox. Click Save.

  4. Back on the main Fiddler Everywhere screen, enable the Live Traffic toggle to start capturing HTTP and HTTPS system traffic.

For Linux

  1. Start Fiddler Everywhere and go to Settings > HTTPS. Expand the Advanced Settings sub-menu and click the Export Root Certificate to Desktop button.

  2. To import and trust the exported certificate, perform the following steps.

    (For localized Linux distributions only) Some Linux distributions, such as Ubuntu, use localized paths—for example, the name of the Desktop folder is translated into the locale language. This may cause an error, specifically create a folder named Desktop in your root mkdir ~/Desktop directory. Then, export the certificate to the newly-created directory. Once the certificate is installed, you can safely remove that directory.

    1. Create a directory and copy the exported certificate by running the following commands.

      $ sudo mkdir /usr/share/ca-certificates/extra
      $ sudo cp ~/Desktop/FiddlerRootCertificate.crt /usr/share/ca-certificates/extra
      
      // Starts the tool and upgrades the certificates.
      $ sudo dpkg-reconfigure ca-certificates
      
    2. From the prompt, select Yes to install new certificates.

      Add new certificate

    3. Choose the FiddlerRootCertificate.crt file and click OK.

      Add Fiddler certificate

    4. The certificates are now updated.

      Add Fiddler certificate

  3. Enable the capturing of the HTTPS traffic by selecting the Capture HTTPS traffic checkbox and clicking Save.

  4. Back in the main Fiddler Everywhere screen, enable the Live Traffic toggle to start capturing HTTP and HTTPS system traffic.

Fiddler Everywhere enables you further to control the certificate installation and HTTPS system capture. Use the HTTPS menu for more advanced features and options related to the root trust certificate and the HTTPS system capture.

Fiddler Everywhere provides the preconfigured browser-capturing option, which enables you to skip the system capturing configuration. The predefined browser-capturing option comes in handy when you generate captured traffic only from a browser or lack administrative rights to install certificates and modify the system proxy, or when third-party VPNs and security tools collide with the Fiddler Everywhere proxy.