Subscribe to PortalGuard's Quarterly Newsletter for News & Updates on the Latest Release! Click to Subscribe

Fiddler Capture HTTPS


Problem

You want to capture HTTPS traffic to/from PortalGuard, and would like to know what program to use and how to perform this action. 

Solution

Download and configure Fiddler to capture HTTP/HTTPS web traffic.

Background Information

Fiddler is a web browser proxy that can capture HTTP/HTTPS requests from your browser and the associated responses from any web servers.  It can capture both clear-text (HTTP) and encrypted (HTPS) traffic when configured properly.  

Fiddler can be downloaded from the following location:

https://www.telerik.com/download/fiddler

  1. Once opened, Fiddler will automatically begin capturing web traffic.
    • By default, HTTPS traffic is NOT captured, and Fiddler will need to be configured appropriately in order to do so.
  2. In Fiddler navigate to the 'Tools' menu and click on 'Options'.
  3. In the new 'Options' window, navigate to the HTTPS tab.
  4. Ensure the box labeled 'Capture HTTPS CONNECTs' is checked.
  5. Check the box labeled 'Decrypt HTTPS traffic'.
    • After a moment, you will receive a pop-up that  says 'SCARY TEXT AHEAD: Read Carefully!' - this is expected. Click 'Yes' to trust the Fiddler Root certificate. 
    • Another pop-up will appear to display a 'Security Warning' - this is also expected.  Click 'Yes' to install the certificate. 
    • A third pop-up will appear asking you to confirm that you want to add the certificate to the Machine Root List.  Click 'Yes'. 
    • A final confirmation pop-up will appear.  Click 'Ok'. 
  6. Check the box labeled 'Ignore server certificate errors (unsafe)'
  7. Your final result should resemble the following:
    • PortalGuard - Fiddler Settings
  8. Click 'Ok'
  9. You are now able to capture both HTTP and HTTPS traffic via Fiddler. 
    • A valid capture of both HTTP and HTTPS traffic will resemble the following:
      • PortalGuard Fiddler - Capture

Using Fiddler to Troubleshoot PortalGuard Integrations

  1. Open Fiddler and ensure it is 'Capturing' the traffic. 
  2. Open a web browser on the same machine and duplicate the error. 
  3. Navigate to Fiddler and stop capturing web traffic. 
    • Navigate to 'File' and click on 'Capture Traffic'
  4. Click on the 'File' menu and then choose 'Save' -> 'All Sessions'.
    • PortalGuard Fiddler - Save
  5. This will open a prompt to save the full capture as a .saz file. Give the file a name and save it to a location that you will be able to navigate to. 
    • If the file is very large, compress it to a .zip format before sending.
  6. Create a ticket with PortalGuard Technical Support that describes the issue at hand and provide the .saz file containing the captured web traffic when the issue was duplicated. 

REV. 09/2018 | PortalGuard

  • 41
  • 28-Sep-2018
  • 878 Views