Zyte Smart Proxy Manager(formerly Crawlera) performs HTTPS requests using CONNECT method, transparently tunnelling packets over default HTTPS port 443 to and from the destination server in a secure session.

To fetch HTTPS web pages through Smart Proxy Manager you need to download and install the certificate file for Smart Proxy Manager Certificate Authority or disable SSL certificate verification in your HTTP client.

The Smart Proxy Manager Certificate Authority can be downloaded here: zyte-smartproxy-ca.crt

Please note that this certificate is different from the one that should be used by crawlera-headless-proxy, which can be downloaded here: ca.crt

Installing the certificate file on Windows 10

  1. Press the Win key + R hotkey and input mmc in Run to open Microsoft Management Console window.
  2. Click File and select Add/Remove Snap-ins.
  3. In the opened window select Certificates and press the Add > button.
  4. In Certificates Snap-in window select Computer account > Local Account, and press the Finish button to close the window.
  5. Press the OK button in the Add or Remove Snap-in window.
  6. Back in the Microsoft Management Console window, select Certificates under Console Root and right-click Trusted Root Certification Authorities.
  7. From the context menu select All Tasks > Import to open the Certificate Import Wizard window from which you can add Smart Proxy Manager's certificate.

More details here.

Installing the certificate file on OS X

  1. Open Keychain Access window (Launchpad > Other > Keychain Access).
  2. Select System tab under Keychains, drag and drop the downloaded certificate file (or select File > Import Items... and navigate to the file).
  3. Enter the administrator password to modify the keychain.
  4. Double-click the Smart Proxy Manager CA certificate entry, expand Trust, next to When using this certificate: select Always Trust.
  5. Close the window and enter the administrator password again to update the settings.

Installing the certificate file on Ubuntu

  1. Copy the downloaded certificate file to /usr/local/share/ca-certificates/directory to make it implicitly trusted:
    sudo cp zyte-smartproxy-ca.crt /usr/local/share/ca-certificates/zyte-smartproxy-ca.crt

  2. Update stored Certificate Authority files:

    sudo update-ca-certificates

Installing the certificate file into Mozilla Firefox browser

  1. Open Preferences, visit Privacy & Security tab, scroll down to Certificates section, click View Certificates... button to open Certificate Manager.
  2. Under Authorities tab click Import... button, navigate to the certificate file.
  3. In the opened window (You have been asked to trust a new Certificate Authority (CA)) check the first option Trust this CA to identify websites and click the OK button to finish importing the certificate.
  4. Click the OK button to save settings and exit Certificate Manager.

Installing the certificate file into Google Chrome browser

  1. Click the triple-dot icon in the top right corner and choose Settings.
  2. Scroll to the bottom of the page and click Advanced.
  3. In Privacy and security section choose Manage certificates.
  4. Next steps will depend on the operating system. In case of Mac OS, the previous action will open the Keychain Access -- see Installing the certificate file on OS X section above. In case of Windows, the Certificates application should appear -- select Trusted Root Certification Authorities tab, click Import... button, navigate to the certificate file, verify the import was successful and the installed certificate is displayed under Trusted Root Certification Authorities tab, close the Certificates window.

In case of requiring certificate with PKCS#12 format, you can generate it with the following openssl command:

openssl pkcs12 -export -nokeys -password pass: -in zyte-smartproxy-ca.crt -out zyte-smartproxy-ca.p12

The minimal example to check if the CA is working for you is to try:

curl -vx https://proxy.zyte.com:8014 -U <API key>: --cacert zyte-smartproxy-ca.crt https://httpbin.org/ip