Tool Outage Information Frequently Asked Questions about PJM Tools Security Certificate Replacement PDF Actions Requested PJM will be providing two four-hour testing windows for stakeholders who use PJM Tools in Train Thursday, July 12, and Thursday, July 19, from noon to 4 p.m. EPT (1200 to 1600 hours) to verify the new security certificate works with your systems. Please share this communication with your information technology support person to verify whether or not your company accesses PJM Tools through browserless user interfaces. Stakeholders who use browserless user interfaces to access PJM Tools must update their certificate to continue to access PJM Tools in Train and Production (Prod) environments. PJM does not expect regular browser access to be impacted by this change. However, we encourage all members to confirm access during the two Train test windows. PJM is providing two four-hour testing windows for stakeholders who use browserless user interfaces to access PJM Tools in Train. The new security certificate will be available for testing on PJM’s system in Train Thursday, July 12, and Thursday, July 19, from noon to 4 p.m. EPT (1200 to 1600 hours). It is recommended your IT support person be available during one of the four-hour testing windows to test and troubleshoot any issues. Although impacts are expected to only occur with browserless UIs, the testing window also provides an opportunity to verify browser access to PJM’s systems using the new certificate. During the testing time frame if you experience any issues your IT person is unable to resolve, call PJM’s Customer Service for assistance, 610-666-8980. Once each four-hour window concludes, PJM will roll back the certificate to allow stakeholders who have identified an issue to upgrade the security certificate on their systems. Future Actions PJM will permanently replace the security certificate for PJM Tools in the Train environment in the next three to four weeks, weather permitting. PJM will schedule the PJM Tools Production release in late August. PJM must replace its existing security certificate before Google and Mozilla begin generating a security error to users with browserless UIs in October How Can I Stay Informed? Additional information will be communicated during the Tech Change Forum, through stakeholder emails and on this page. Key Messages PJM works hard to ensure the security of PJM’s stakeholders’ information and aims to create as little disruption as possible for those who do business with us. The certificate replacement is necessary in order for our stakeholders to have uninterrupted access to PJM Tools. The testing window is an opportunity to ensure seamless access once the security certificate is permanently put in place. If PJM Tools works in the Train testing environment, it will also work in Production. Background PJM must replace an expiring security certificate that creates website trust between stakeholder and PJM systems. Google and Mozilla have announced it is upgrading to Chrome 70 and Firefox 63 in October. These upgrades will cause a security error to be generated to stakeholders trying to access PJM Tools if PJM does not update the certificate. Stakeholder Impact Once PJM replaces the certificate, stakeholders who use browserless user interfaces to access PJM Tools may receive a security error. Certificate Replacement Dates PJM has tentatively scheduled the certificate replacement dates for PJM Tools in Train and production (Prod) environments. PJM Tools Train – testing windows scheduled for Thursday, July 12, and Thursday, July 19 from noon to 4 p.m. PJM will replace the certificate in Train in the next three to four weeks, weather permitting. PJM Tools Production (Prod) – the security certificate replacement will occur in late August. More details will follow regarding the hours and testing time frames. How Can Stakeholders Stay Informed? Information on this page will be updated as available. PJM will communicate the details of this change and the steps stakeholders need to take during the Tech Change Forum meeting Tuesday, July 24. PJM’s Member Services will send email updates closer to the certificate replacement dates. How to Make This Change All the stakeholders who access PJM’s applications via an API (browserless/servicecall) must download and update your certificate trust store with the below Root and Intermediate Authority Certificates. Root Certificate Intermediate Authority Certificate Key Messages PJM works hard to ensure the security of our stakeholder’s information and aims to create as little disruption as possible for those who do business with us. The certificate replacement is necessary in order for PJM’s stakeholders to have uninterrupted access to PJM Tools. Supporting Information DigiCert Closes Acquistion of Symantec’s Website Security Business DigiCert Completes Acquisition of Symantec’s Website Security and Related PKI Solutions If you have questions, please contact PJM’s Customer Service or 610-666-8980.