Skip to main content
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Pardon our Dust.

Welcome to the new site for Federal Identity, Credential, and Access Management (FICAM) Playbooks! We are consolidating all existing FICAM and Federal Public Key Infrastructure (FPKI) playbooks to this new page to help you find answers and content faster. Please bookmark this URL for future reference.

1. Prepare to migrate to the Federal Common Policy CA G2

Use the checklist below to prepare your agency for the migration to the Federal Common Policy CA (FCPCA) G2. The checklist highlights activities as they relate to the following roles:

  • ENG - Information technology engineers and system administrators
  • APP - Application developers and owners
  • PM - Project managers
  • CIO - Chief information officers
  • CSO - Chief security officers

Agency staff are encouraged to participate in steps where their roles are listed in bold underlined font.

FCPCA G2 Migration Checklist

FCPCA G2 Migration Checklist Recommended Participants
1. Attend a webinar ENG APP PM CIO CSO
  • We are collaborating with CISA on a series of webinars and virtual "office hours" sessions to communicate upcoming changes and answer your questions.
  • E-mail fpkirootupdate@gsa.gov to join our e-mail distribution, and we'll follow-up once more information is available.
2. Communicate upcoming changes across your enterprise ENG APP PM CIO CSO
  • Communicate with relevant stakeholders early and often to minimize migration issues.
  • Collaborate and coordinate with a variety of agency stakeholders, including but not limited to domain administrators, website and application administrators, mobile device management administrators.
  • Identify who you need to communicate with, and get started now!
3. Inventory enterprise systems and applications ENG APP PM CIO CSO
  • Inventory your agency's systems and applications.
  • Identify how you will deliver the updated FCPCA G2 CA certificate to affected systems or applications. For example, you might distribute the certificate through a Group Policy Object (GPO) or Mobile Device Management (MDM) tool.
4. Create and execute a plan for certificate distribution ENG APP PM CIO CSO
  • Work with your colleagues to develop, execute, and test a plan to distribute the FCPCA G2 certificate (and, possibly, the CA certificates issued by the FCPCA G2) to affected operating systems and applications across your enterprise.
  • Communication is key! Collaborate with both colleagues and stakeholders across your agency.
5. Test, test, and test again ENG APP PM CIO CSO
  • Follow your agency's established enterprise change management process(es).
  • Test the procedures recommended by this guide in a test environment, if possible, to verify the intended results prior to production implementation.

Get started today! Obtain and verify a copy of the FCPCA G2 certificate.