***** EXTERNAL email. Please be cautious and evaluate before you click on links, open attachments, or provide credentials. *****

NOTICE DATE:  April 6, 2018
NOTICE TYPE:  M-B022818-04 Operations
SHORT DESCRIPTION:  UPDATE – Date Changes and additional information regarding Changes to programmatic access to ERCOT’s External Web Services, Secure Sockets Layer certificate upgrade and URL changes
INTENDED AUDIENCE:  Market Participant personnel that administer programmatic access to ERCOT’s production and testing environments and User Security Administrators (USAs)
DAYS AFFECTED:  April 18, 2018 and May, 2018
LONG DESCRIPTION:  ERCOT’s production Market Information System (MIS.ERCOT.COM) secure website will be configured with a new DigiCert SSL server certificate on April 18, 2018.
All users connecting to ERCOT’s MIS system via browser should have no adverse effects due to the update. Since ERCOT does not support screen scraping, users utilizing screen scraping systems to programmatically pull data from MIS.ERCOT.COM may be affected.
To give more time for Market Participant testing, ERCOT has decided to move the implementation of DigiCert SSL Intermediate and Root CA configuration for all programmatic access to ERCOT’s Production External Web Services API (MISAPI.ERCOT.COM and API.WAN.ERCOT.COM) from April 18, 2018 to May 2018.  ERCOT will send a follow-up Market Notice with the new implementation date based on MP testing results.
When ERCOT implements the new DigiCert SSL Intermediate and Root CA configuration in May 2018, ERCOT will also implement a configuration change to ensure that API communication from Market Participants into ERCOT’s production environment is sent with a handshake-level valid ERCOT issued Client Digital Certificate and each message signed with a valid ERCOT issued Client Digital Certificate.
In order to allow Market Participants to test their systems for the aforementioned changes to API configuration prior to the upgrade in ERCOT’s production environment, both changes were implemented in ERCOT’s Market Operations Testing Environment (MOTE) and Retail Market Testing Environment (RMTE) on March 7, 2018 at 8:00 CPT.
On March 7, 2018 at 8:00 CPT, ERCOT implemented new URLs for its Market Operations Testing Environment (MOTE) and Retail Market Testing Environment (RMTE) as shown below to standardize URL formats between its testing and production environments.
Current MOTE/RMTE URLs:

·         (UI)                https://testing.ercot.com

·         (API)              https://testingapi.ercot.com

·         (WAN API)     https://testingapi.wan.ercot.com<https://testingapi.wan.ercot.com/>


NEW MOTE/RMTE URLs:

·         (UI)                https://testmis.ercot.com

·         (API)              https://testmisapi.ercot.com

·         (WAN API)     https://testmisapi.wan.ercot.com


ERCOT will leave the current MOTE/RMTE URLs available for testing confirmation and they will be retired once the changes are implemented in production in May.
ACTION REQUIRED:  The following certificates are the minimum required for the new DigiCert SSL Intermediate and Root CA configuration to communicate to the ERCOT Web Service API for submissions, queries and report downloads.
Market Participants should either add these certificates to the existing keystore or create a blank keystore with just these certificates installed after the new DigiCert SSL Intermediate and Root CA configuration change to MOTE/RMTE on March 7, 2018, and Production in May 2018. The entire SSL Chain will be required for both the Production and MOTE/RMTE environments for API communication. The Client Root Certificate is required for the respective environment.

·         Required SSL Chain Certificates:

·         Production and MOTE/RMTE

§  DigiCertGlobalIntermediateG2.cer (DigiCert Intermediate Certificate)

§  DigiCertGlobalRootCAG2.cer (DigiCert Root Certificate)

·         Required Client Root Certificates:

·         Production only

§  ERCOT_CA.cer (ERCOT’s Production 2048 Client Root Certificate)

·         MOTE/RMTE only

§  ERCOT_TEST_CA.cer (ERCOT's MOTE 2048 Client Root Certificate )
Market Participants must also ensure that all API communication into ERCOT’s production and testing environments is sent with a handshake-level valid ERCOT issued Client Digital Certificate and each message signed with a valid ERCOT-issued Client Digital Certificate for MOTE/RMTE on March 7, 2018, and Production in May 2018.
All Certificates are available for download on ERCOT.com at http://www.ercot.com/services/mdt/webservices/.
CONTACT:  If you have any questions, please contact your ERCOT Account Manager. You may also call the general ERCOT Client Services phone number at (512) 248-3900 or contact ERCOT Client Services via email at [log in to unmask]<mailto:[log in to unmask]>.
If you are receiving email from a public ERCOT distribution list that you no longer wish to receive, please follow this link in order to unsubscribe from this list: http://lists.ercot.com.



sa