最近一直碰到fiddler抓包無法抓到https的通信內容,並提示
Creation of interception certificate failed.
makecert.exe returned -1.
[...] Error: Can’t create the key of the subject (‘JoeSoft’)”
最后決定要解決這個問題,因此研究了下,並在網上搜索了一些資料,最后按照博文
http://harachie.wordpress.com/2011/04/05/fiddler-creation-of-interception-certificate-failed/
進行操作,最后成功看到https的通信內容。
我覺得關鍵一點是:
刪除:C:\Users\<UserName>\AppData\Roaming\Microsoft\Crypto\RSA\
這個路徑下的文件就行了。
不過我建議大家先備份里面的文件,否則出了問題,則無法恢復。
最后貼下此博文:
Recently I had some problems with the HTTPS decryption of Fiddler.
Outlook could not connect to the mail server, promting me again and again for my credentials. Deleting all the Fiddler certificates did solve this problem for me, since Outlook could not verify the correctness of the used certificate.
Unfortunately I did delete the Fiddler root certificate, too.
No clue what happened, but when trying to enable the HTTPS decryption again to view my secured connections the error message “Creation of
interception certificate failed. makecert.exe returned -1. [...] Error:
Can’t create the key of the subject (‘JoeSoft’)” popped up.
I searched my key storage for any certificate related to “JoeSoft” but could not find anything. So time to start ProcessMonitor from SysInternals to see which key cannot be created.
Here is the solution which worked for me:
- Start ProcessMonitor
- Set some filters
to search for the process name “makecert.exe”
and a path containing “crypto\rsa”
- goto the path showing up, something like: C:\Users\<UserName>\AppData\Roaming\Microsoft\Crypto\RSA\<FolderName>
Rename (beware of not suffixing it, it will not work) or delete the file - Try to activate HTTPS decryption again