HTTPS

After the initial startup, the Fiddler Everywhere application could only capture non-secure traffic (HTTP) while SSL traffic is not captured. To enable capturing and decrypting HTTPS traffic, you will need to explicitly install a root trust certificate via the HTTPS submenu in Settings.

The submenu provides the following options:

  • Trust Root Certificate button.
    • Capture HTTPS traffic checkbox (in-active by default).
  • Advanced Settings submenu.

    • Export Root Certificate to Desktop and Trust Certificate button (Linux only).

    default https settings

HTTPS Capturing for Windows

To enable HTTPS capturing & decoding on Windows or MacOS, use the Trust Root Certificate option as follows:

  1. Start Fiddler Everywhere on the device that will capture the traffic.
  2. Go to Settings > HTTPS
  3. Click the Trust Root Certificate button. A trust certificate popup appears - confirm and add the certificate. A popup confirmation appears ("Fiddler root certificate trusted successfully").
  4. The Capture HTTPS traffic checkbox is now active. Check the box to enable capturing HTTPS traffic.
  5. Click the Save button to save the changes.

HTTPS Capturing for Mac OS

  1. Start Fiddler Everywhere on the device that will capture the traffic.
  2. Go to Settings > HTTPS
  3. Click the Trust Root Certificate button. A keychain user & password box appears. Enter your administrative credentials. Enter Keychain credentials to trust the root certificate

  4. The Capture HTTPS traffic checkbox is now active. Check the box to enable capturing HTTPS traffic. Enter Keychain credentials to trust the root certificate

  5. Click the Save button to save the changes.

HTTPS Capturing for Linux

Some Linux distributions are using different security features and different ways of adding a root certificate. For such cases, the Fiddler Everywhere provides means to export the root trust certificate so that it could be manually imported in your Linux OS. Use the Export Root Certificate to Desktop and Trust Certificate option as follows:

  1. Start Fiddler Everywhere on the device that will capture the traffic.
  2. Go to Settings > HTTPS
  3. Expand the __Advanced Settings_ submenu
  4. Click the Export Root Certificate to Desktop and Trust Certificate button. Enter your Keychain credentials in the popup window.
  5. The Capture HTTPS traffic checkbox is now active. Check the box to enable capturing HTTPS traffic.
  6. Click the Save button to save the changes.

Some Linux distributions like Ubuntu will use localized paths (for example, the Desktop folder is renamed with the related word used in the locale language). That might cause for step 3 to fail due to a missing folder named Desktop with an error message of type Could not find a part of the path .... Until an out-of-the-box solution is implemented, you could easily workaround this issue by creating a folder called Desktop at your root directory (mkdir ~/Desktop) and then export the certificate to the newly-created directory. Once the certificate is installed, you could safely remove the directory.

See Also

In this article
Not finding the help you need? Improve this article