May 9, 2008

 

 

Requested Client Action Action Date

Categories

Grid Operation

Market Operations

System Status/ Technical Update

 

 

Scheduling Infrastructure (SI) Server Certificate Migration

___________________________________________________

 

Summary

The CAISO will install a new Scheduling Interface (SI) server certificate issued from its new CyberTrust Public Key Infrastructure (PKI) on May 14, 2008.  Participants connecting to SI must download the root CyberTrust certificates in order to prevent connectivity issues. 

___________________________________________________

 

Main Text

On May 14, 2008 the California ISO (CAISO) will update the SI Production system with a new server certificate, which requires users to install new CAISO CyberTrust root certificates.  By May 13, 2008, all external SI Application Programming Interface (API) users must download new certificate files in order to avoid a connection failure after the CAISO server certificate installation.  Participants using Netscape Navigator should download the new root certificates in order to avoid connection warnings each time they attempt to connect to SI.

 

Please note that the PKI certificate files were previously provided in a December 2007 Market Notice.  At that time, all external users of CAISO applications were asked to import the PKI root certificates, so many users may have already installed the required files.  However, the notice in December 2007 was a general notice which did not specify the dependency for SI API users.  Please note that users running any APIs against any CAISO system will need to install the root certificates by this date to avoid any connection failures.

 

·         All SI API users must import the following PKI root certificates into their browsers/client systems and accept all default configurations during the installation, to avoid any application connection issues.  Importing the root certificates allows client systems to trust communications from CAISO systems certified from the new PKI. 

1. CyberTrust CAISO Root_CA Certificate:  http://www.caiso.com/1c09/1c09f19a1c730.crt
2. CyberTrust CAISO Issuing_CA Certificate:  http://www.caiso.com/1c09/1c09f14d14cf0.crt

 

Instructions for installing the root certificates into some standard platforms for API connections are located on the CAISO Website at:  http://www.caiso.com/14cf/14cf687f315c0.pdf.

 

Instructions to install root certificates into Netscape Navigator:

The certificate chain, comprised of 2 certificates, is used to validate the end user’s certificate.  The two certificates, CAISO_Root_CA and CAISO_Issuing_CA, are located under the CyberTrust certificates section on the CAISO Website at: http://www.caiso.com/pubinfo/info-security/certs/ .

 

1.       Click on the CRT file provided for the “CyberTrust CAISO Root_CA Certificate”. 

2.       The browser will bring up a Downloading Certificate dialog box asking you to check the purposes for which you are willing to accept this authority.  Check all three boxes and click OK.

3.       To validate that the certificate installed in your browser, select Tools, Options, the Advanced button, the Encryption tab, and View Certificates button.  In the Certificate Management window, select the Authorities tab and scroll down to find CAISO_Root_CA.

 

Repeat these steps for the “CyberTrust CAISO Issuing_CA Certificate” (name this one CAISO_Issuing_CA).

_________________________________________________

 

For More Information Contact

SI Technical questions or issues:  Troy Siegel at tdsiegel@caiso.com

Certificate-related questions:  Leslie DeAnda at ldeanda@caiso.com or Joseph Cates at jcates@caiso.com