Jefferson Lab Web Certificate Update

Jefferson Lab Web Certificate Update

Jefferson Lab Web Certificate Update

Computer users who manage their own desktops will need to install a new JLab Root Certificate on their systems, following the instructions below for downloading updated JLab Certificates. Computer users with desktops managed by the IT Division do not need to take any action.

Jefferson Lab maintains its own Certificate Authority to create and sign certificates that are used by your web browser, email client and other applications to enable secure connections to websites and other network services. Recent browser upgrades have added security controls that now cause warning messages regarding some JLab certificates that use older hashing algorithms. This includes the JLab certificate used for web browsing through the JLab firewall. To remedy this, the web certificate in the JLab firewall will be upgraded on Friday, Jan. 6, at 7 a.m. Computer users who manage their own machines will need to install a new JLab Root Certificate on their systems.

Without this certificate, some browsers will generate warnings when connecting to secure sites, while others may simply not connect at all. This work is not expected to cause an interruption in Internet connectivity.

If, after 7 a.m. on Friday, your browser generates certificate warnings (e.g. certificate untrusted, security certificate is invalid, etc.) while accessing the Internet, follow the instructions to download the updated JLab Certificates here: https://pki.jlab.org/

If you have any questions or need assistance with this task, contact the IT Division Helpdesk at x7155 or helpdesk@jlab.org.