LER 95-008-00:on 950728,discovered During Design Change Testing That None of Four Containment High Pressure Channels Would Initiate Rt.Caused by Programmatic Deficiencies. Reviewed Selected Tests & Mods from Recent Refueling Outage| ML18064A878 |
| Person / Time |
|---|
| Site: |
Palisades  |
|---|
| Issue date: |
08/28/1995 |
|---|
| From: |
Gire P
CONSUMERS ENERGY CO. (FORMERLY CONSUMERS POWER CO.) |
|---|
| To: |
|
|---|
| Shared Package |
|---|
| ML18064A877 |
List: |
|---|
| References |
|---|
| LER-95-008, LER-95-8, NUDOCS 9509050154 |
| Download: ML18064A878 (10) |
|
|
|---|
Category:LICENSEE EVENT REPORT (SEE ALSO AO
MONTHYEARML18066A6271999-09-0202 September 1999
LER 98-011-01:on 981217,inadequate Lube Oil Collection Sys for Primary Coolant Pumps Was Noted.Caused by Design Change Not Containing Appropriate Level of Rigor.Exemption from 10CFR50,App R Was Requested.With 990902 Ltr
ML18066A6221999-08-20020 August 1999
LER 99-002-00:on 990722,TS Surveillance Was Not Completed within Specified Frequency.Caused by Failure to Incorporate Revised Frequency Into Surveillance Schedule in Timely Manner.Verified Implementation.With 990820 Ltr
ML18066A3781999-01-20020 January 1999
LER 98-013-00:on 981222,safeguards Transfer Tap Changer Failure Caused Inadvertant DG Start.Caused by Failed Motor Contactor.Contactor Was Replaced.With 990120 Ltr
ML18068A4851998-10-29029 October 1998
LER 97-011-01:on 971012,starting of Primary Coolant Pump with SG Temps Greater than Cold Leg Temps Occurred.Caused by Inadequate Procedures & Operator Decision.Sop Used for Starting Primary Coolant Pump Enhanced
ML18066A2831998-08-18018 August 1998
LER 98-010-00:on 980721,reactor Manually Tripped.Caused by Failure of Coupling Which Drives Feedwater Pump Main Lube Oil Pump.Main Lube Oil Pump Coupling & Associated Components Replaced & Satisfactorily Tested
ML18066A2261998-06-30030 June 1998
LER 98-009-00:on 980531,small Pinhole Leak Found on One of Welds,During Leak Test Following Replacement of Pcs Sample Isolation Valves.Caused by Welder Error.Leaking Welds Repaired
ML18066A1781998-06-0909 June 1998
LER 98-008-00:on 980511,noted That Procedure Did Not Fully Satisfy Requirement to Test High Startup Rate Trip Function. Caused by Misunderstanding of Testing Requirements.Revised TS Surveillance Test Procedure & Reviewed Other Procedures
ML18065B2451998-05-13013 May 1998
LER 98-007-00:on 980413,HPIS Sys Was Noted Inoperable During TS Surveillance Test.Caused by Performance of Flawed Procedure.Operators & Engineers Will Be Trained to Improve Operational Decision Making Through Resources & Knowledge
ML18065B1151997-12-0909 December 1997
LER 97-013-00:on 971110,failure to Closure Test Two Check Valves Resulted in Violation of TS 6.5.7 Occurred.Caused by Close Function for Check Valves.Check Valves Tested to Confirm Proper Closure Capability
ML18067A7751997-11-11011 November 1997
LER 97-011-00:on 971012,primary Coolant Pump Was Started W/Sg Temperatures Greater than Cold Leg Temperature.Caused by Inadequate Procedures & Operator Decision Making.Critique of Event Conducted W/Operators Involved
ML18067A7581997-10-30030 October 1997
LER 97-010-00:on 970930,determined That Inadequacy in App R Analysis Resulted in Condition Outside Design Basis of Plant.Caused by Missing Cable in Circuit & Raceway Schedule. Developed New Evaluation Re ASD Valves Validation
ML18067A7461997-10-23023 October 1997
LER 97-009-00:on 970923,discovered Procedure Weakness Re Implementation of App R Shutdown Methodology.Caused by Human Error.Revised Off-Normal Procedure ONP-25.2, Alternate Safe Shutdown Procedure.
ML18067A7191997-10-10010 October 1997
LER 97-008-00:on 970912,spurious Valve Operation Could Result in Loss of Shutdown Capabilities Per 10CFR50,App R, Section Iii.L,Was Discovered.Caused by Failure to Validate Info from App R.Design Bases for SW Backup Reviewed
ML18067A6951997-09-24024 September 1997
LER 97-007-00:on 970826,discovered Inadequate Testing of DG Sequencer Control Relay Contacts.Caused by Oversight on Part of Personnel Involved in Installation of Facility Change FC-800.Tested 106D-1/XL & 106D-2/XL Relay Contacts
ML18067A5651997-06-0303 June 1997
LER 96-013-01:on 961115,DC Breaker Failed During Testing for as-found Trip Setting.Failure Caused by Oversight within Preventive Maint Program.Breaker Was Replaced & Tested
ML18067A5461997-05-12012 May 1997
LER 97-006-00:on 970412,overtime Limits Were Exceeded for Radiation Protection Technicians.Caused by Inadequate Design,Review & Proper Verifications of Overtime Work Schedule.Communicate Overtime Limitation Responsibilities
ML18067A4431997-03-24024 March 1997
LER 97-004-00:on 970221,trip of High Pressure Safety Injection Pump Occurred While Filling Safety Injection Tank Resulting in TS Violation.Caused by Particle Lodged Between Surface of Indication disk.Y-phase Relay Was OOS
ML18067A4391997-03-21021 March 1997
LER 97-005-00:on 961220,operation of Plant Outside Design Basis Occurred Due to an Unacceptable Repair on Main Steam Isolation Valves.Pipe Plugs Permanently Repaired
ML18067A4401997-03-21021 March 1997
LER 97-003-00:on 961101,four Piping Lines Were Determined to Be Potentially Susceptible to Pressurization Due to Containment Temperature Increase During an Accident.Cac Discharge Piping Will Be verified.W/970321 Ltr
ML18066A8931997-02-21021 February 1997
LER 97-002-00:on 970123,failure to Meet TSs 4.5.2d(1)(b) for Testing of Emergency Escape Airlock Occurred.Caused by Missed Surveillance.Emergency Escape Air Lock Testing Was Completed & Declared operable.W/970221 Ltr
ML18066A8751997-02-0505 February 1997
LER 97-001-00:on 970106,TAVE Temp Dropped Below Minimum Temp for Criticality.Caused by Control Rod Withdrawal Rate to Increase Power Not Sufficient to Match Increase in Steam. Turbine Bypass Valve Actuator repaired.W/970205 Ltr
ML18066A8041996-12-23023 December 1996
LER 96-014-00:on 961124,class 1E Raychem Cable Splices Were Installed Incorrectly.Caused by Incorrectly Made Electrical Splices.Total of 270 Splices Have Been Replaced within Containment
ML18066A7831996-12-16016 December 1996
LER 96-013-00:on 961115,DC Breaker Failure During Testing for as-found Trip Setting Occurred.Cause Under Investigation.All molded-case Circuit Breakers in DC Distribution Panels Were Replaced
ML18065A9951996-10-0404 October 1996
LER 96-002-01:on 960116,initiated TS Required Shutdown Due to Safeguards Cable Fault.Both Sets (Six Cables) of Cables Were Replaced & Installed Through Turbine Generator Bldg
ML18065A9171996-09-0909 September 1996
LER 95-012-00:on 960809,TS Violation Occurred,Due to No Senior Reactor Operator in Cr.Caused by Extensive Remodeling.Cr Remodeling completed.W/960909 Ltr
ML18065A8961996-08-29029 August 1996
LER 96-011-00:on 960730,CR Continuous Air Monitor Alarm Setpoint Improperly Established.Caused by Failure to Utilize Mod Process in 1988 Leading to Failure to Properly Select & Calibrate Instruments
ML18065A8811996-08-20020 August 1996
LER 96-005-01:on 960207,determined Fuse on Main Supply to Two Safety Related DC Panels & Panel Branch Circuit Breakers Not Properly Coordinated.Caused by Lack of Thorough Associated Circuits Analysis.Supply Fuse to Panels Replaced
ML18065A8741996-08-16016 August 1996
LER 96-010-00:on 960717,high Pressure Safety Injection Pump Tripped While Filling Safety Injection Tank.Caused by Faulty 150/151Y-207 Time Overcurrent Relay.All Similar Relays in Time Overcurrent Application Have Been Inspected
ML18065A8651996-08-12012 August 1996
LER 96-009-00:on 960712,identified Penetration Seal Deficiency on Fire Barriers Caused by Failure to Perform & Document Comprehensive Fire Barrier Evaluation.Developed Basis document.W/960812 Ltr
ML18065A8601996-08-0202 August 1996
LER 96-006-01 on 960207,discovered Limits of Design Analysis Could Have Been Violated.Subsequent Tests & Analyses Facility Did Not Exceed Basis.Operating Procedures Have Been Revised to Treat 2530 Megawatts Limit as Absolute Limit
ML18065A8321996-08-0101 August 1996
LER 96-003-01:on 960115,alternate Shutdown Panel Inverter Resulted in Unavailability of Panel.Replaced Defective Inverter Alarm Logic Board
ML18065A7691996-06-12012 June 1996
LER 96-008-00:on 960513,fire Door Not Maintained Open in Accordance W/Design Basis.Cause Under Investigation. Engineering Evaluation Performed & Revised Documents, Surveillance & Test procedures.W/960612 Ltr
ML18065A6901996-05-0101 May 1996
LER 95-001-01:on 950302,malfunction of Left Channel DBA Sequencer Resulted in Inadvertent Actuation of Left Channel Safeguards Equipment.Replaced microprocessor.W/960501 Ltr
ML18065A6681996-04-22022 April 1996
LER 96-007-00:on 960321,inadequate Emergency Lighting & Ventilation in post-fire Safe Shutdown Areas.Caused by App R Program Documentation Insufficient to Demonstrate Regulatory Compliance.Lighting modified.W/960422 Ltr
ML18065A5721996-03-11011 March 1996
LER 96-006-00:on 960207,average Reactor Power Level Exceeded License Limit Due to Insufficient Procedural Guidance. GOP-12 Revised to Treat 2,530 Mwt Limit as Absolute Limit Requiring Immediate Corrective Action If Exceeded
ML18065A5261996-03-0101 March 1996
LER 96-005-00:on 960202,fuse on Main Supply to Two SR DC Panels & Panel Branch Circuit Breakers Not Properly Coordinated.Caused by Inadequate Electrical/App R Design Review.Implemented Hourly Fire tours.W/960301 Ltr
ML18065A5111996-02-19019 February 1996
LER 94-012-02:on 940427,determined That Internal Ground in Thermal Margin Monitor Causes Nonconformance W/Rps Design Basis.Incorporated RPS Failure Modes & Effects Analysis in Plant DBD.W/960219 Ltr
ML18065A5061996-02-19019 February 1996
LER 96-004-00:on 960118,SIS Disabled W/Primary Coolant Sys Greater than 300 F.Caused by Personnel Error.Permanent Maint Procedure to Disable/Enable SIS Actuation on Low Pressurizer Pressure Will Be Revised to Align W/Ts
ML18065A5021996-02-15015 February 1996
LER 96-003-00:on 960115,technicians Found Low Voltage cut- Off for Alternate Shutdown Panel Inverter Set That Resulted in Unavailability of Panel.Caused by Inadequate Post Mod. Readjusted Set Point to Minimum setting.W/960215 Ltr
ML18065A4581996-01-31031 January 1996
LER 96-001-00:on 960103,failed to Test Duplicate Equipment. Caused by STS No Longer Containing Requirement for cross- Train Testing of Duplicate Components.Will Submit Request to Delete Subj Requirements from TS.W/960131 Ltr
ML18065A4421996-01-19019 January 1996
LER 95-016-00:on 951226,did Not Analyze Primary Coolant Samples within 72 H.Caused by Belief Acceptability to Save Pcs Samples for Choride Analysis Past 72 H.Counseled Chemistry Supervision.W/960119 Ltr
ML18065A4041996-01-15015 January 1996
LER 95-014-00:on 950119,PCP Oil Collection Deficiencies Created by FC-860 Piping Mod.Caused by Inadequate DBD for Sys & Lack of Review by Experienced Fire Protection Personnel.Updated Design Basis documentation.W/960115 Ltr
ML18065A3291995-12-0404 December 1995
LER 95-013-00:on 951103,circuit Fuse Coordination Deficiency Which Affects App R Safe Shutdown Equipment Noted.Design of Fuse Coordination in Potential Transformer Circuits Will Be Evaluated & Modified as required.W/951204 Ltr
ML18065A2361995-11-0202 November 1995
LER 95-012-00:on 950701,discovered Unqualified Electrical Connection in Containment SW Outlet Valve Controller.Caused by Failure of Assigned Engineers to Available Info.Replaced Wire Nuts W/Inline Butt connections.W/951102 Ltr
ML18065A2051995-10-20020 October 1995
LER 95-008-01:on 950728,discovered That None of Four Containment High Pressure Channels Would Initiate Reactor Trip Due to Programmatic Deficiencies.Administrative Procedure (AP) 9.44,AP 9.45 & AP 10.44 Will Be Revised
ML18065A0841995-09-18018 September 1995
LER 95-011-00:on 950817,CR 40 Withdrawal Occurred When Given Insertion Signal Due to skill-based Error in Crimping & Removing Foreign Matl from CRDM Motor Connection Box.Crd Package replaced.W/950918 Ltr
ML18065A0681995-09-14014 September 1995
LER 95-010-00:on 950815,ESFA Resulted in Manual Rt Following Isolation of Pcs.Replaced Failed Instrument Line
ML18065A0651995-09-0808 September 1995
LER 95-009-00:on 950728,discovered Lack of Procedural Guidance for Pump Repair Following Fire.Proposed Use of Power Supply Breaker Did Not Adequately Address Effect of Loss of Control Power.Performed Independent Assessment
ML18064A8781995-08-28028 August 1995
LER 95-008-00:on 950728,discovered During Design Change Testing That None of Four Containment High Pressure Channels Would Initiate Rt.Caused by Programmatic Deficiencies. Reviewed Selected Tests & Mods from Recent Refueling Outage
ML18064A8831995-08-21021 August 1995
LER 95-007-00:on 950720,discovered That 12 Instrument Loops Had V-bolted Type Qualified Cable Splices Connected to Wires W/Exposed Kapton Insulation.Caused by Human Error.All V- Bolted Splices Replaced w/in-line design.W/950821 Ltr
1999-09-02
[Table view]
Category:RO)
MONTHYEARML18066A6271999-09-0202 September 1999
LER 98-011-01:on 981217,inadequate Lube Oil Collection Sys for Primary Coolant Pumps Was Noted.Caused by Design Change Not Containing Appropriate Level of Rigor.Exemption from 10CFR50,App R Was Requested.With 990902 Ltr
ML18066A6221999-08-20020 August 1999
LER 99-002-00:on 990722,TS Surveillance Was Not Completed within Specified Frequency.Caused by Failure to Incorporate Revised Frequency Into Surveillance Schedule in Timely Manner.Verified Implementation.With 990820 Ltr
ML18066A3781999-01-20020 January 1999
LER 98-013-00:on 981222,safeguards Transfer Tap Changer Failure Caused Inadvertant DG Start.Caused by Failed Motor Contactor.Contactor Was Replaced.With 990120 Ltr
ML18068A4851998-10-29029 October 1998
LER 97-011-01:on 971012,starting of Primary Coolant Pump with SG Temps Greater than Cold Leg Temps Occurred.Caused by Inadequate Procedures & Operator Decision.Sop Used for Starting Primary Coolant Pump Enhanced
ML18066A2831998-08-18018 August 1998
LER 98-010-00:on 980721,reactor Manually Tripped.Caused by Failure of Coupling Which Drives Feedwater Pump Main Lube Oil Pump.Main Lube Oil Pump Coupling & Associated Components Replaced & Satisfactorily Tested
ML18066A2261998-06-30030 June 1998
LER 98-009-00:on 980531,small Pinhole Leak Found on One of Welds,During Leak Test Following Replacement of Pcs Sample Isolation Valves.Caused by Welder Error.Leaking Welds Repaired
ML18066A1781998-06-0909 June 1998
LER 98-008-00:on 980511,noted That Procedure Did Not Fully Satisfy Requirement to Test High Startup Rate Trip Function. Caused by Misunderstanding of Testing Requirements.Revised TS Surveillance Test Procedure & Reviewed Other Procedures
ML18065B2451998-05-13013 May 1998
LER 98-007-00:on 980413,HPIS Sys Was Noted Inoperable During TS Surveillance Test.Caused by Performance of Flawed Procedure.Operators & Engineers Will Be Trained to Improve Operational Decision Making Through Resources & Knowledge
ML18065B1151997-12-0909 December 1997
LER 97-013-00:on 971110,failure to Closure Test Two Check Valves Resulted in Violation of TS 6.5.7 Occurred.Caused by Close Function for Check Valves.Check Valves Tested to Confirm Proper Closure Capability
ML18067A7751997-11-11011 November 1997
LER 97-011-00:on 971012,primary Coolant Pump Was Started W/Sg Temperatures Greater than Cold Leg Temperature.Caused by Inadequate Procedures & Operator Decision Making.Critique of Event Conducted W/Operators Involved
ML18067A7581997-10-30030 October 1997
LER 97-010-00:on 970930,determined That Inadequacy in App R Analysis Resulted in Condition Outside Design Basis of Plant.Caused by Missing Cable in Circuit & Raceway Schedule. Developed New Evaluation Re ASD Valves Validation
ML18067A7461997-10-23023 October 1997
LER 97-009-00:on 970923,discovered Procedure Weakness Re Implementation of App R Shutdown Methodology.Caused by Human Error.Revised Off-Normal Procedure ONP-25.2, Alternate Safe Shutdown Procedure.
ML18067A7191997-10-10010 October 1997
LER 97-008-00:on 970912,spurious Valve Operation Could Result in Loss of Shutdown Capabilities Per 10CFR50,App R, Section Iii.L,Was Discovered.Caused by Failure to Validate Info from App R.Design Bases for SW Backup Reviewed
ML18067A6951997-09-24024 September 1997
LER 97-007-00:on 970826,discovered Inadequate Testing of DG Sequencer Control Relay Contacts.Caused by Oversight on Part of Personnel Involved in Installation of Facility Change FC-800.Tested 106D-1/XL & 106D-2/XL Relay Contacts
ML18067A5651997-06-0303 June 1997
LER 96-013-01:on 961115,DC Breaker Failed During Testing for as-found Trip Setting.Failure Caused by Oversight within Preventive Maint Program.Breaker Was Replaced & Tested
ML18067A5461997-05-12012 May 1997
LER 97-006-00:on 970412,overtime Limits Were Exceeded for Radiation Protection Technicians.Caused by Inadequate Design,Review & Proper Verifications of Overtime Work Schedule.Communicate Overtime Limitation Responsibilities
ML18067A4431997-03-24024 March 1997
LER 97-004-00:on 970221,trip of High Pressure Safety Injection Pump Occurred While Filling Safety Injection Tank Resulting in TS Violation.Caused by Particle Lodged Between Surface of Indication disk.Y-phase Relay Was OOS
ML18067A4391997-03-21021 March 1997
LER 97-005-00:on 961220,operation of Plant Outside Design Basis Occurred Due to an Unacceptable Repair on Main Steam Isolation Valves.Pipe Plugs Permanently Repaired
ML18067A4401997-03-21021 March 1997
LER 97-003-00:on 961101,four Piping Lines Were Determined to Be Potentially Susceptible to Pressurization Due to Containment Temperature Increase During an Accident.Cac Discharge Piping Will Be verified.W/970321 Ltr
ML18066A8931997-02-21021 February 1997
LER 97-002-00:on 970123,failure to Meet TSs 4.5.2d(1)(b) for Testing of Emergency Escape Airlock Occurred.Caused by Missed Surveillance.Emergency Escape Air Lock Testing Was Completed & Declared operable.W/970221 Ltr
ML18066A8751997-02-0505 February 1997
LER 97-001-00:on 970106,TAVE Temp Dropped Below Minimum Temp for Criticality.Caused by Control Rod Withdrawal Rate to Increase Power Not Sufficient to Match Increase in Steam. Turbine Bypass Valve Actuator repaired.W/970205 Ltr
ML18066A8041996-12-23023 December 1996
LER 96-014-00:on 961124,class 1E Raychem Cable Splices Were Installed Incorrectly.Caused by Incorrectly Made Electrical Splices.Total of 270 Splices Have Been Replaced within Containment
ML18066A7831996-12-16016 December 1996
LER 96-013-00:on 961115,DC Breaker Failure During Testing for as-found Trip Setting Occurred.Cause Under Investigation.All molded-case Circuit Breakers in DC Distribution Panels Were Replaced
ML18065A9951996-10-0404 October 1996
LER 96-002-01:on 960116,initiated TS Required Shutdown Due to Safeguards Cable Fault.Both Sets (Six Cables) of Cables Were Replaced & Installed Through Turbine Generator Bldg
ML18065A9171996-09-0909 September 1996
LER 95-012-00:on 960809,TS Violation Occurred,Due to No Senior Reactor Operator in Cr.Caused by Extensive Remodeling.Cr Remodeling completed.W/960909 Ltr
ML18065A8961996-08-29029 August 1996
LER 96-011-00:on 960730,CR Continuous Air Monitor Alarm Setpoint Improperly Established.Caused by Failure to Utilize Mod Process in 1988 Leading to Failure to Properly Select & Calibrate Instruments
ML18065A8811996-08-20020 August 1996
LER 96-005-01:on 960207,determined Fuse on Main Supply to Two Safety Related DC Panels & Panel Branch Circuit Breakers Not Properly Coordinated.Caused by Lack of Thorough Associated Circuits Analysis.Supply Fuse to Panels Replaced
ML18065A8741996-08-16016 August 1996
LER 96-010-00:on 960717,high Pressure Safety Injection Pump Tripped While Filling Safety Injection Tank.Caused by Faulty 150/151Y-207 Time Overcurrent Relay.All Similar Relays in Time Overcurrent Application Have Been Inspected
ML18065A8651996-08-12012 August 1996
LER 96-009-00:on 960712,identified Penetration Seal Deficiency on Fire Barriers Caused by Failure to Perform & Document Comprehensive Fire Barrier Evaluation.Developed Basis document.W/960812 Ltr
ML18065A8601996-08-0202 August 1996
LER 96-006-01 on 960207,discovered Limits of Design Analysis Could Have Been Violated.Subsequent Tests & Analyses Facility Did Not Exceed Basis.Operating Procedures Have Been Revised to Treat 2530 Megawatts Limit as Absolute Limit
ML18065A8321996-08-0101 August 1996
LER 96-003-01:on 960115,alternate Shutdown Panel Inverter Resulted in Unavailability of Panel.Replaced Defective Inverter Alarm Logic Board
ML18065A7691996-06-12012 June 1996
LER 96-008-00:on 960513,fire Door Not Maintained Open in Accordance W/Design Basis.Cause Under Investigation. Engineering Evaluation Performed & Revised Documents, Surveillance & Test procedures.W/960612 Ltr
ML18065A6901996-05-0101 May 1996
LER 95-001-01:on 950302,malfunction of Left Channel DBA Sequencer Resulted in Inadvertent Actuation of Left Channel Safeguards Equipment.Replaced microprocessor.W/960501 Ltr
ML18065A6681996-04-22022 April 1996
LER 96-007-00:on 960321,inadequate Emergency Lighting & Ventilation in post-fire Safe Shutdown Areas.Caused by App R Program Documentation Insufficient to Demonstrate Regulatory Compliance.Lighting modified.W/960422 Ltr
ML18065A5721996-03-11011 March 1996
LER 96-006-00:on 960207,average Reactor Power Level Exceeded License Limit Due to Insufficient Procedural Guidance. GOP-12 Revised to Treat 2,530 Mwt Limit as Absolute Limit Requiring Immediate Corrective Action If Exceeded
ML18065A5261996-03-0101 March 1996
LER 96-005-00:on 960202,fuse on Main Supply to Two SR DC Panels & Panel Branch Circuit Breakers Not Properly Coordinated.Caused by Inadequate Electrical/App R Design Review.Implemented Hourly Fire tours.W/960301 Ltr
ML18065A5111996-02-19019 February 1996
LER 94-012-02:on 940427,determined That Internal Ground in Thermal Margin Monitor Causes Nonconformance W/Rps Design Basis.Incorporated RPS Failure Modes & Effects Analysis in Plant DBD.W/960219 Ltr
ML18065A5061996-02-19019 February 1996
LER 96-004-00:on 960118,SIS Disabled W/Primary Coolant Sys Greater than 300 F.Caused by Personnel Error.Permanent Maint Procedure to Disable/Enable SIS Actuation on Low Pressurizer Pressure Will Be Revised to Align W/Ts
ML18065A5021996-02-15015 February 1996
LER 96-003-00:on 960115,technicians Found Low Voltage cut- Off for Alternate Shutdown Panel Inverter Set That Resulted in Unavailability of Panel.Caused by Inadequate Post Mod. Readjusted Set Point to Minimum setting.W/960215 Ltr
ML18065A4581996-01-31031 January 1996
LER 96-001-00:on 960103,failed to Test Duplicate Equipment. Caused by STS No Longer Containing Requirement for cross- Train Testing of Duplicate Components.Will Submit Request to Delete Subj Requirements from TS.W/960131 Ltr
ML18065A4421996-01-19019 January 1996
LER 95-016-00:on 951226,did Not Analyze Primary Coolant Samples within 72 H.Caused by Belief Acceptability to Save Pcs Samples for Choride Analysis Past 72 H.Counseled Chemistry Supervision.W/960119 Ltr
ML18065A4041996-01-15015 January 1996
LER 95-014-00:on 950119,PCP Oil Collection Deficiencies Created by FC-860 Piping Mod.Caused by Inadequate DBD for Sys & Lack of Review by Experienced Fire Protection Personnel.Updated Design Basis documentation.W/960115 Ltr
ML18065A3291995-12-0404 December 1995
LER 95-013-00:on 951103,circuit Fuse Coordination Deficiency Which Affects App R Safe Shutdown Equipment Noted.Design of Fuse Coordination in Potential Transformer Circuits Will Be Evaluated & Modified as required.W/951204 Ltr
ML18065A2361995-11-0202 November 1995
LER 95-012-00:on 950701,discovered Unqualified Electrical Connection in Containment SW Outlet Valve Controller.Caused by Failure of Assigned Engineers to Available Info.Replaced Wire Nuts W/Inline Butt connections.W/951102 Ltr
ML18065A2051995-10-20020 October 1995
LER 95-008-01:on 950728,discovered That None of Four Containment High Pressure Channels Would Initiate Reactor Trip Due to Programmatic Deficiencies.Administrative Procedure (AP) 9.44,AP 9.45 & AP 10.44 Will Be Revised
ML18065A0841995-09-18018 September 1995
LER 95-011-00:on 950817,CR 40 Withdrawal Occurred When Given Insertion Signal Due to skill-based Error in Crimping & Removing Foreign Matl from CRDM Motor Connection Box.Crd Package replaced.W/950918 Ltr
ML18065A0681995-09-14014 September 1995
LER 95-010-00:on 950815,ESFA Resulted in Manual Rt Following Isolation of Pcs.Replaced Failed Instrument Line
ML18065A0651995-09-0808 September 1995
LER 95-009-00:on 950728,discovered Lack of Procedural Guidance for Pump Repair Following Fire.Proposed Use of Power Supply Breaker Did Not Adequately Address Effect of Loss of Control Power.Performed Independent Assessment
ML18064A8781995-08-28028 August 1995
LER 95-008-00:on 950728,discovered During Design Change Testing That None of Four Containment High Pressure Channels Would Initiate Rt.Caused by Programmatic Deficiencies. Reviewed Selected Tests & Mods from Recent Refueling Outage
ML18064A8831995-08-21021 August 1995
LER 95-007-00:on 950720,discovered That 12 Instrument Loops Had V-bolted Type Qualified Cable Splices Connected to Wires W/Exposed Kapton Insulation.Caused by Human Error.All V- Bolted Splices Replaced w/in-line design.W/950821 Ltr
1999-09-02
[Table view]
Category:TEXT-SAFETY REPORT
MONTHYEARML18066A6901999-11-0101 November 1999
Rev 5 to Palisades Nuclear Plant Colr.
ML18066A6761999-09-30030 September 1999
Monthly Operating Rept for Sept 1999 for Palisades Nuclear Plant
ML18066A6271999-09-0202 September 1999
LER 98-011-01:on 981217,inadequate Lube Oil Collection Sys for Primary Coolant Pumps Was Noted.Caused by Design Change Not Containing Appropriate Level of Rigor.Exemption from 10CFR50,App R Was Requested.With 990902 Ltr
ML18066A6351999-08-31031 August 1999
Monthly Operating Rept for Aug 1999 for Palisades Nuclear Plant
ML18066A6771999-08-31031 August 1999
Operating Data Rept Page of MOR for Aug 1999 for Palisades Nuclear Plant
ML18066A6221999-08-20020 August 1999
LER 99-002-00:on 990722,TS Surveillance Was Not Completed within Specified Frequency.Caused by Failure to Incorporate Revised Frequency Into Surveillance Schedule in Timely Manner.Verified Implementation.With 990820 Ltr
ML18066A6061999-07-31031 July 1999
Monthly Operating Rept for July 1999 for Palisades Nuclear Plant.With 990803 Ltr
ML18066A5201999-06-30030 June 1999
Monthly Operating Rept for June 1999 for Palisades Nuclear Plant.With 990702 Ltr
ML18066A4841999-05-31031 May 1999
Monthly Operating Rept for May 1999 for Palisades Nuclear Plant.With 990603 Ltr
ML18066A6371999-04-30030 April 1999
Revised Monthly Operating Rept for Apr 1999 for Palisades Nuclear Plant
ML18068A5941999-04-30030 April 1999
Monthly Operating Rept for Apr 1999 for Palisades Nuclear Plant.With 990503 Ltr
ML18066A4161999-04-0101 April 1999
Rev 4 to COLR, for Palisades Nuclear Plant
ML18066A4501999-03-31031 March 1999
Monthly Operating Rept for Mar 1999 for Palisades Nuclear Plant.With 990402 Ltr
ML18066A4671999-03-31031 March 1999
Rev 0 to SIR-99-032, Flaw Tolerance & Leakage Evaluation Spent Fuel Pool Heat Exchanger E-53B Nozzle Palisades Nuclear Plant.
ML18068A5351999-02-28028 February 1999
Monthly Operating Rept for Feb 1999 for Palisades Nuclear Plant.With 990302 Ltr
ML18066A3931999-01-31031 January 1999
Monthly Operating Rept for Jan 1999 for Palisades Nuclear Plant.With 990202 Ltr
ML18066A3781999-01-20020 January 1999
LER 98-013-00:on 981222,safeguards Transfer Tap Changer Failure Caused Inadvertant DG Start.Caused by Failed Motor Contactor.Contactor Was Replaced.With 990120 Ltr
ML20206F6131998-12-31031 December 1998
1998 Consumers Energy Co Annual Rept. with
ML18066A3651998-12-31031 December 1998
Monthly Operating Rept for Dec 1998 for Palisades Nuclear Plant.With 990105 Ltr
ML18066A3421998-11-30030 November 1998
Monthly Operating Rept for Nov 1998 for Palisades Nuclear Plant.With 981202 Ltr
ML18066A3301998-11-11011 November 1998
Part 21 Rept Re Potential Safety Hazard Associated with Wrist Pin Assemblies for FM-Alco 251 Engines at Palisades Nuclear Power Plant.Caused by Insufficient Friction Fit Between Pin & Sleeve.Supplier of Pin Will No Longer Be Used
ML18068A4921998-10-31031 October 1998
Monthly Operating Rept for Oct 1998 for Palisades Nuclear Plant.With 981103 Ltr
ML18068A4851998-10-29029 October 1998
LER 97-011-01:on 971012,starting of Primary Coolant Pump with SG Temps Greater than Cold Leg Temps Occurred.Caused by Inadequate Procedures & Operator Decision.Sop Used for Starting Primary Coolant Pump Enhanced
ML18066A3181998-09-30030 September 1998
Monthly Operating Rept for Sept 1998 for Palisades Nuclear Plant
ML18066A2901998-08-31031 August 1998
Monthly Operating Rept for Aug 1998 for Palisades Nuclear Power Plant.With 980903 Ltr
ML18066A3191998-08-31031 August 1998
Revised Monthly Operating Rept Data for Aug 1998 for Palisades Nuclear Plant
ML18066A2831998-08-18018 August 1998
LER 98-010-00:on 980721,reactor Manually Tripped.Caused by Failure of Coupling Which Drives Feedwater Pump Main Lube Oil Pump.Main Lube Oil Pump Coupling & Associated Components Replaced & Satisfactorily Tested
ML18066A2771998-08-13013 August 1998
Part 21 Rept Re Deficiency in CE Current Screening Methodology for Determining Limiting Fuel Assembly for Detailed PWR thermal-hydraulic Sa.Evaluations Were Performed for Affected Plants to Determine Effect of Deficiency
ML20237E0301998-07-31031 July 1998
ISI Rept 3-3
ML18066A2701998-07-31031 July 1998
Monthly Operating Rept for July 1998 for Palisades Nuclear Plant.W/980803 Ltr
ML18066A2311998-06-30030 June 1998
Monthly Operating Rept for June 1998 for Palisades Nuclear Plant
ML18066A2261998-06-30030 June 1998
LER 98-009-00:on 980531,small Pinhole Leak Found on One of Welds,During Leak Test Following Replacement of Pcs Sample Isolation Valves.Caused by Welder Error.Leaking Welds Repaired
ML18066A3061998-06-18018 June 1998
SG Tube Inservice Insp.
ML20249C4951998-06-17017 June 1998
Rev 1 to EA-GEJ-98-01, Palisades Cycle 14 Disposition of Events Review
ML18066A1781998-06-0909 June 1998
LER 98-008-00:on 980511,noted That Procedure Did Not Fully Satisfy Requirement to Test High Startup Rate Trip Function. Caused by Misunderstanding of Testing Requirements.Revised TS Surveillance Test Procedure & Reviewed Other Procedures
ML18066A1711998-06-0101 June 1998
Part 21 Rept Re Impact of RELAP4 Excessive Variability on Palisades Large Break LOCA ECCS Results.Change in PCT Between Cycle 13 & Cycle 14 Does Not Constitute Significant Change Per 10CFR50.46
ML18066A1741998-05-31031 May 1998
Monthly Operating Rept for May 1998 for Palisades Nuclear Plant.W/980601 Ltr
ML18066A2321998-05-31031 May 1998
Revised MOR for May 1998 for Palisades Nuclear Plant
ML18068A4701998-05-31031 May 1998
Annual Rept of Changes in ECCS Models Per 10CFR50.46.
ML18065B2451998-05-13013 May 1998
LER 98-007-00:on 980413,HPIS Sys Was Noted Inoperable During TS Surveillance Test.Caused by Performance of Flawed Procedure.Operators & Engineers Will Be Trained to Improve Operational Decision Making Through Resources & Knowledge
ML18066A2331998-04-30030 April 1998
Revised MOR for Apr 1998 for Palisades Nuclear Plant
ML18068A3461998-04-30030 April 1998
Monthly Operating Rept for Apr 1998 for Palisades Nuclear Plant.W/980501 Ltr
ML18066A3411998-04-22022 April 1998
Rev 0 to EMF-98-013, Palisades Cycle 14:Disposition & Analysis of SRP Chapter 15 Events.
ML18065B2071998-03-31031 March 1998
Monthly Operating Rept for Mar 1998 for Palisades Nuclear Plant.W/980403 Ltr
ML20217C2741998-03-31031 March 1998
Independent Review - Is Consumers Energy Method (W Method) of Determining Palisades Nuclear Plant Best Estimate Fluence by Combining Transport Calculation & Dosimetry Measurements Technically Sound & Does It Meet Intent of Pts
ML18066A2341998-03-31031 March 1998
Revised MOR for Mar 1998 for Palisades Nuclear Plant
ML18068A3041998-02-28028 February 1998
Monthly Operating Rept for Feb 1998 for Palisades Nuclear Plant.W/980302 Ltr
ML18066A2351998-02-28028 February 1998
Revised MOR for Feb 1998 for Palisades Nuclear Plant
ML18065B1641998-02-0505 February 1998
Rev 0 to Regression Analysis for Containment Prestressing Sys at 25th Year Surveillance.
ML18067A8211998-01-31031 January 1998
Monthly Operating Rept for Jan 1998 for Palisades Nuclear Plant.W/980203 Ltr
1999-09-30
[Table view] |
Text
NRC Form 388 U.S. NUCLEAR REGULATORY COMMISSION (9*831 APPROVED OMB NO. 3160-0104 EXPIRES: 8/31 /86 LICENSEE EVENT REPORT (LERI FACILITY NAME 111 DOCKET NUMBER 121 PAGE 131 Palisades Plant 015101010121515 1 I OF 0 19 TITLE 141 LICENSEE EVENT REPORT SS-008 - BYPASSED CONTAINMENT HIGH PRESSURE TRIPS ON REACTOR PROTECTION SYSTEM EVENT DATE 161 LEA NUMBER 161 REPORT DATE 181 OTHER FACILITIES INVOLVED 181 SEQUENTIAL REVISION FACILITY NAMES MONTH DAY YEAR YEAR NUMBER NUMBER MONTH DAY YEAR
- ************* N/A ol5lololol I 011 2la s s sis - olola - olo ola 2la sis N/A 0151010101 I THIS REPORT IS SUBMITTED PURSUANT TO THE REOUIREM ENTS OF 10 CFR I: fCh<<Jc OM or more of tha following} 1111 OPERATING N 20.402(b) 20.4061cl 60.731*11211ivl 73.711bl POWER MODE 191 20.4061*111 Hi) - 60.361cll1l x 60.731*1121M - 73.711cl LEVEL 20.4061*111 lliil 60.361cll2l 60.731all211viil OTHER (Specify in Abstract (10) o I o lo 20.4061*111 lliii) 60.731*112Hil 60. 7 311112llviii11Al below and in Text,
- 20.4061*111 )(iv) 20.4061*1111M 60.731*112llii) 60.731*112lliiil LICENSEE CONTACT FOR THIS LER 1121
- 60.731all211viii11Bl 60.731*11211xl NRC Form 366Al NAME TELEPHONE NUMBER Paul J Gire, Staff Licensing Engineer sARrA,Cr~ 1 7 1 6 1 4 1 - 18 1s 1, 13
- CAUSE SYSTEM COMPONENT COMPLETE ONE LINE FOR EACH COMPONENT FAILURE DESCRIBED IN THIS REPORT 1131 MANUFAC*
TUR ER REPORTABLE TO NPRDS
~
CAUSE SYSTEM COMPONENT MANUFAC*
TUR ER REPORT ABLE TO NPRDS w.
I I
I I I I I I r I I I I I SUPPLEMENTAL REPORT EXPECTED 1141 I
I I
I I I I I I I I I EXPECTE.0 I I MONTH DAY I YEAR
'Xl YES Uf YH, com,Wr. EXPECTED SUBMISSION DA TEI hNO SUBMISSION DATE 1161 ,I o 210 s *1 s ABSTRACT IJ.jmit to 1400 spacoa, i.e., approximor.ly fifteen llingkt-spactt typttwrimn lintt*I 116)
On July 28, with the plant in cold shutdown condition, all control rods inserted, and at refueling boron, it was discovered during design change testing. that none of the four containment high pressure channels would initiate a reactor trip. An undesired connection across the containment high pressure trip contacts was discovered in the printed circuit boards of the interconnection modules. The connection was introduced as a result of a modification installed in 1992 which replaced all four channels of reactor protection because of high maintenance and obsolescence of spare parts. This connection provided a circuit path that bypassed the containment high pressure trip to the matrix logic of the reactor protection system, thereby disabling the containment high pressure trip circuit.
The problem was caused by programmatic deficiencies in the design change program, testing program, and industry experience review program.
Corrective actions completed include a review of selected tests and modifications from the recently completed refueling outage to ensure system and component performance was verified properly. Corrective actions to be completed include the establishment of a modifications teaming approach to enhance oversight of design changes, and the formation of a testing authority to oversee all design and surveillance testing.
9509050154 950828
~DR ADOCK 05000255
--*- -** *----**-****-**-**-------- ~.OR ..
NRC Form 388A U.S. NUCLEAR REGULATORY COMMISSION (9-83) APPROVED OMB NO. 3160-0104 EXPIRES: 9/31/86 LICENSEE EVENT REPORT (LERI TEXT CONTINUATION FACILITY NAME (1) DOCKET NUMBER 121 LER NUMBER (31 PAGE (4)
SEQUENTIAL REVISION YEAR NUMBER NUMBER Palisades Plant 0 I5 I0 I0 I0 I2 I5 I5 9 I5 - 0 I0 I8 - 0 I0 0 I2 OF 0 I9 EVENT DESCRIPTION - ~
On July 28, with the plant in cold shutdown condition, all control rods inserted, and at refueling boron, it was discovered during design change testing that none of the four containment high pressure (CHP) channels of the reactor protection system (RPS),[JD], would initiate a reactor trip.
The design change testing followed recently completed minor upgrades to the RPS trip unit connector blocks. An undesired connection across the CHP trip contacts was discovered in the printed circuit boards of the interconnection modules. The connection was introduced as a result of a separate 1992 modification which replaced all four channels of the RPS because of high maintenance and obsolescence of spare parts. This connection provided a circuit path that bypassed the CHP trip to the matrix logic of the RPS, thereby disabling the CHP trip circuit on all four independent safety channels.
The Palisades RPS design contains twelve available trip units in each of the four separate safety channels. The initial plant design contained ten active trip functions, with the two remaining unused trip functions bypassed to complete the systern logic. Prior to initial criticality, a CHP trip function was added to the plant design, and the eleven active trips remained essentially untouched until a modification was completed in March of 1992. The 1992 modification included the replacement of all twelve trip units for the four channels of the RPS system because of high maintenance and obsolescence of spare parts. Facility Change FC-888, 11 Upgrade RPS Bistable Trip Units And Power Supplies, 11 was designed by the original equipment supplier, Combustion Engineering (CE). The original wiring list showing two bypassed trip units was inadvertently implemented without adequate validation and verification as a design input into the planned upgrade. The bypassed configuration of the CHP trip units was not identified during post modification testing in the 1992 refueling outage nor during monthly TS surveillance testing due to inadequate test procedures.
Upon discovery of the disabled CHP trip functions, a multidisciplinary root cause analysis team was established. Insight on the use of Event and Causal Factor Analysis was provided by an individual from the Institute of Nuclear Power Operations (INPO) during the first week of the root cause evaluation. Concurrent with the Palisades evaluation, a root cause evaluation was initiated by CE to assess the adequacy of the quality controls and processes utilized in the CE Nuclear Services Engineering Department. The circuit boards were modified to re-enable the CHP trip function and an operability test was developed and completed for all trip functions on the four channels of the RPS.
CAUSES OF THIS EVENT The root cause evaluation team identified numerous inappropriate actions and program deficiencies that are categorized into three primary program areas with five identified primary root causes. Th~ three primary program areas are;
NRC Form 3BBA U.S. NUCLEAR REGULATORY COMMISSION 19-83) APPROVED OMB NO. 3160-0104 EXPIRES: Bl31186 LICENSEE EVENT REPORT (LERI TEXT CONTINUATION FACILITY NAME 111 DOCKET NUMBER 121 LER NUMBER 131 PAGE 141 SEQUENTIAL . REVISION YEAR NUMBER NUMBER Palisades Plant 0 I5 I0 I0 I0 I2 I5 I5 9 I5 - 0 I0 I8 - 0 I0 0 I3 OF 0 I9 A. Inadequate design control program, B. Inadequate testing control program, C. Inadequate industry experience review program.
The five primary root causes are:
- 1. Inadequate program scope
- 2. Inadequate prioritization of work
- 3. Inadequate program monitoring or management
- 4. Inadequate attention to emerging problems
- 5. Lack of commitment to program implementation Tt:ie significant findings with their associated root causes are categorized below within the program area associated with the problem:
A. INADEQUATE DESIGN CONTROL PROGRAM Root Cause #1 Inadequate Program Scope, (omission of necessary functions or guidance in procedures):
- 1. Plant procedures did not alert users that vendor information was uncontrolled and COL!ld be inaccurate. Vendor documents (manuals and drawings) were not always maintained up to date. This became an event precursor when the FC-888 project engineer removed the outdated wire list from the vendor file and used it as a design input without adequate validation and verification. The wiring list still had a circuit bypass for the CHP channel since the initial plant design did not include a CHP trip.
- 2. Plant procedures did not establish clear roles and responsibilities for the implementation of modifications. Besides the Prime Design Reviewer, no other personnel on site felt direct ownership for the successful implementation of the modification.
Root Cause #2 Inadequate Prioritization Of Work, (inappropriate application of resources due to a misunderstanding of task significance or complexity or availability of resources):
- 1. The plant Prime Design Reviewer (PDR) and the Combustion Engineering (CE) designer, who acted as the Respons!ble Engineer, were both inexperienced. The assignment of the inexperienced engineers to this modification was due to a lack of available experienced personnel and the mindset of management that the RPS modification was one of limited complexity and scope. It was believed that CE as a whole had the knowledge and skills to balance out this inexperience. The new RPS design was a clone of the early 1980's RPS System designs that were used for St. Lucie and Millstone nuclear plants.
NRC Form 366A U.S. NUCLEAR REGULATORY COMMISSION 19-831 APPROVED OMS NO. 3160-0104 EXPIRES: 8/31/86 LICENSEE EVENT REPORT (LERI TEXT CONTINUATION FACILITY NAME 111 DOCKET NUMBER 121 LER NUMBER 131 PAGE 141 SEQUENTIAL REVISION YEAR NUMBER NUMBER Palisades Plant 0 5 0 0 0 2 5 5 9 5 - .0 0 8 - 0 0 0 4 OF Q 9
- 2. There were very few modification team meetings conducted. All of the technical reviews were completed by CE. Palisades personnel only provided cursory reviews of portions of the design. At that time, there was no programmatic guidance to provide system engineer involvement or ownership in the modification planning and reviews.
Root Cause #3 Inadequate Program Monitoring or Management, (insufficient oversight and self assessment):
- 1. There was an over reliance on CE due to their being on the approved suppliers list and being the original equipment manufacturer. CE's design reviews and testing were less than adequate and the plant oversight was not effective.
Root Cause #4 Inadequate Attention To Emerging Problems, (ineffective problem identification and root cause analysis):
- 1. During modification preparations, CE was behind schedule and several problems were identified during design reviews, testing and installation. With the lack of experience and attention associated with the oversight of this modification, Palisades was unable to recognize the generic implications.
- 2. During the installation of the RPS modification in 1992, two design problems were identified. The problems could have been linked to the use of the same incorrect wiring list. If these two conditions had been sufficiently evaluated in 1992 for generic implications, the precursor (inaccurate wiring list) could have been identified and the inadvertent CHP bypass could have been discovered at that time. Corrective action documents were not written for the two problems noted during the modification installation. The corrective action process initiated in 1994 is more intrusive and has resulted in Condition Reports (CRs) being generated and evaluated in a more timely manner for similar issues associated with modification problems.
B. INADEQUATE TESTING CONTROL PROGRAM Root Cause #1 Inadequate Program Scope, (omission of necessary functions or guidance in procedures):
Root Cause #5 Lack of Commitment to Program Implementation
- 1. The plant procedures and organization lacked a single point of contact for testing to ensure consistent application of proper testing techniques and overlap.
NRC Form 388A U.S. NUCLEAR REGULATORY COMMISSION 18-831 APPROVED OMB NO. 3160-0104 EXPIRES: 8/31 /86 LICENSEE EVENT REPORT (LERI TEXT CONTINUATION FACILITY NAME 111 DOCKET NUMBER 121 LER NUMBER 131 PAGE 141 SEQUENTIAL REVISION YEAR NUMBER NUMBER Palisades Plant 0 I5 I0 I0 I0 I2 I5 I5 9 I5 - 0 I0 I8 - 0 I0 0 I5 OF 0 I9
- 2. There was an inappropriate reliance on the existing TS Surveillance Test M0-3, "Reactor Protection Matrix Logic Tests," which provided a portion of the post modification verification. The planned approach for the post modification testing consisted of two separate tests. A test procedure written by CE tested the channel relays for proper operation. The second test was the normal monthly Palisades TS test M0-3. This test was used to verify functional operability of the channel relay output to the RPS matrix logic. The TS test M0-3 was used without verifying that it would functionally test all the matrix logic that needed to be tested after the modification.
A simplified block diagram of the RPS testing from FC-888 is shown as Attachment 1. It was determined that M0-3 was not fully meeting the intent of Tech Spec Table 4.17 .1 item 13, RPS matrix logic testing every 31 days. M0-3 did verify that the High Containment Pressure (CHP) relay *contact was opening (single pole double throw contact) but it failed to determine if the contact was being bypassed. The TS surveillance procedure was revised to assure adequate testing overlap to verify the RPS matrix logic performance. This adverse condition pointed out the causal factor that the surveillance test program lacked direction in functional testing of Tech Spec equipment including assurance of adequate overlap of all functions being tested.
Root Cause #2 Inadequate Prioritization Of Work, (inappropriate application of resources due to a misunderstanding of task significance or complexity or availability of resources):
- 1. The existing roles and responsibilities of the system engineers allows other priorities to take precedence over a thorough review of existing TS Surveillance Procedures or new modification test procedures. This situation led to cursory reviews of the modification test procedures.
Root Cause #3 Inadequate Program Monitoring Or Management, (insufficient oversight and self assessment):
- 1. The CE Factory Acceptance Test (FAT) scope should have identified the undesired bypass for the CHP trip. However, there were problems with the test procedure being written incorrectly, identifying that CHP trip test lamps should be lit when they should have been off and, conversely, off when they should have been lit. Currently it is being assumed that the test rig for the FAT was wired incorrectly, which resulted in a failure to identify the CHP bypass. Plant oversight of the FAT procedure and performance was inadequate. The Palisades PDR and Test Engineer had other commitments and were not present to oversee the FAT. The System Engineer and two instrument and control technicians observed a portion of the FAT solely to familiarize themselves with the new system hardware. The FAT failure to locate the CHP bypass was a causal factor indicating that CE's test program was less than adequate.
. NRC Form 388A U.S. NUCLEAR REGULATORY.COMMISSION (9-831 APPROVED OMB NO. 3160-0104 EXPIRES: 8/31/86 LICENSEE EVENT REPORT (LERI TEXT CONTINUATION FACILITY NAME (1) DOCKET NUMBER 121 LER NUMBER 131 PAGE (4)
SEQUENTIAL REVISION YEAR NUMBER NUMBER Palisades Plant Q 5 Q Q Q 2 5 5 9 5 - Q Q 8 - Q Q Q 6 OF Q 9 C. INADEQUATE INDUSTRY EXPERIENCE REVIEW PROGRAM Root Cause #3 Inadequate Program Monitoring Or Management, (insufficient oversight and self assessment):
- 1. The documented evaluations of several similar Industry Experience Events (INs) were reviewed and found to be inadequate. Four of the INs point out inadequate post modification testing, inadequate overlap of testing, and inadequate testing of safety related circuits. There was a tendency to provide only a cursory review of the implications of the industry events with a general assumption that the present testing methods are inherently valid.
SAFETY SIGNIFICANCE Preliminary reviews indicate that the safety significance of not tripping the reactor on CHP would be minor if not negligible. Palisades is working with ABB~CE and our fuel vendor, Siemens Power Co. to quantify the final predicted impact. Final results should be available in September and a supplement to this LER will be provided by 10/20/95.
The failure to trip the reactor on CHP impacts two sections of the FSAR. FSAR section 14. 14,,
"Steam Line Break Inside Containment," takes credit for the reactor trip on CHP at 2.55 seconds into the event. Preliminary review indicates that without CHP the next trip that would occur would be the Variable High Power (VHP) trip at approximately 7 seconds. This would present a slightly higher challenge to the Primary Coolant System (PCS) in the first 20 seconds of the main steam line break (MSLB), event but this condition is bounded by the consequences of the rod withdrawal event. Delaying the reactor trip will actually make the overall cool down less severe, which would reduce the return to power predicted for the MSLB. Therefore, the present .analysis prediction for fuel failure should be bounded by the MSLB inside containment with the CHP trip of the reactor disabled.
The second FSAR section impacted is 14. 18, "Containment Pressure and Temperature Response." The mass and energy release rate analysis for both the Loss of Coolant Accident (LOCA) and Main Steam Line Break (MSLB) took credit for CHP trip of the reactor. Initial indications are that there would be no impact for the LOCA because the reactor would shut down from voids for this event. The MSLB would have additional energy released from the PCS because the reactor would not trip until approximately 7 seconds from VHP. The additional energy will have a minimal impact on the predicted containment pressure and temperature response following a MSLB. Reanalysis is being performed to quantify the impact.
NRC Form 388A U.S. NUCLEAR REGULATORY COMMISSION (8-831 APPROVED OMB NO. 3160-0104 EXPIRES: B/31 /86 LICENSEE EVENT REPORT (LERI TEXT CONTINUATION FACILITY NAME (1 I DOCKET NUMBER 121 LER NUMBER 131 PAGE (41 SEQUENTIAL REVISION YEAR NUMBER NUMBER Palisades Plant Q 5 Q 0 0 2 5 5 9 5 - 0 0 8 - 0 Q 0 7 OF 0 9 CORRECTIVE ACTIONS TAKEN AND RESULTS ACHIEVED The following corrective actions were completed and are described in detail in the associated plant condition report C-PAL-95-1117:
- 1. The RPS matrix channels have been modified to restore the CHP trip function.
- 2. The Technical Specifications Surveillance Test (M0-3) for the RPS matrix logic was revised to provide adequate overlap in testing. This will assure that the requirements of Technical Specification Table 4. 17 .1 item 13 are being adequately verified during the monthly test.
- 3. A review of 24 Technical Specifications Surveillance Procedures, post modification testing completed during the 1995 REFOUT, and Special Tests completed during the 1995 REFOUT was completed. This review was performed to verify that procedures used for testing safety related circuits completely test the design functions of the equipment. As part of this review, condition reports were written and procedures were revised. A number of procedur enhancements were recommended to the procedure sponsors. None of these deficien~ies resulted in any of the equipment being declared inoperable.
- 4. An evaluation was completed for all of the functional equivalent substitu.tion (FES) and specification change (SC) packages installed in 1995 REFOUT. If the FES or SC changed the logic matrix of either the RPS or Engineering Safeguards initiation, the acceptance test was reviewed to verify that the logic matrix functioned properly. This evaluation resulted in two SC' s and two FES' s being reviewed.
The testing which verified each project was found acceptable. There was a concern about the testing for SC-95-033 because the testing was not comprehensive in that the test only verified proper operation of the modified contact and did not verify that the remainder of the logic had not been disturbed. Additional surveillance testing fully verified the adequacy of the entire circuit. *
- 5. An independent evaluation of the testing adequacy for FES-95-032, "RPS Trip Unit Connector Block Replacement" was completed. The evaluation consisted of a review of trip module inputs and outputs affected by the modification to determine the extent to which all functions were checked as part of the post modification test. The scope of the work affected more than 2500 pins in the connector blocks. The results of the assessment indicate that functions using 2% of the pins were not verified and 9% of the pins were not thoroughly tested. The evaluation determined that the post modification testing was less than adequate. Operability of the RPS was subsequently verified by a new test.
NRC Form 388A U.S. NUCLEAR REGULATORY COMMISSION 19-83) APPROVED OMS NO. 3160-0104 EXPIRES: 8/31 /86 LICENSEE EVENT REPORT (LERI TEXT CONTINUATION FACILITY NAME 11) DOCKET NUMBER 121 LER NUMBER 13) PAGE 141 SEQUENTIAL REVISION YEAR NUMBER NUMBER Palisades Plant 0600026693 0 8 OF 0 9 The test plan was developed to declare the RPS operable. The plan objective was to assure full operability of the RPS through the use of overlap and/or full functional testing.
The strategy assured that every RPS input and output functioned properly through functional tests and finally, assured total operability of the RPS safety and non-safety related functions. This evaluation found six data logger outputs not functioning. A condition report (C-PAL-95-1284) and work orders were initiated to adequately resolve these .problems. It was also determined that time response testing of the RPS had not been performed as part of the Thermal Margin Monitor (TMM) modification performed in 1992. Calculations were performed to verify adequate safety margins. RPS time response testing is currently scheduled for the 1997 REFOUT.
The testing plan was reviewed by ABB-CE. The review was formalized and documented testing recommendations and enhancements to assure full RPS operability.
Corrective Actions to Avoid Recurrence
- 1. Provide enhancements to the Design *control Program by implementing the following changes:
- a. Add a requirement to Administrative Procedure (AP) 10.44, "Engineering Records Center Distribution and Control of Design Documents," to attach a notice to any second generation print made to a vendor document, manual or drawing being issued by ERC to indicate that they have not been maintained as living documents.
- b. Revise AP 9.44, "Design Document Control," to indicate vendor manuals and vendor drawings have not been maintained as living documents.
- c. Revise AP 9.45, "Vendor Manual Control," to indicate vendor manuals and vendor drawings have not been maintained as living documents.
- d. Revise AP 9.03, "Facility Change," to add the requirement to initiate condition reports when potentially generic, or significant issues are discovered during Facility Change project work, and eliminate the option of using an inexperienced Prime Design Reviewer (PDR).
- e. Revise AP 9.04, "Specification Changes," to add the requirement to initiate condition reports when potentially generic, or significant issues are discovered during Specification Change project work.
NRC Form 388A U.S. NUCLEAR REGULATORY COMMISSION 19-831 APPROVED OMS NO. 3160-0104 EXPIRES: B/31/86 LICENSEE EVENT REPORT ILER) TEXT CONTINUATION FACILITY NAME 111 DOCKET NUMBER 121 LER NUMBER 131 PAGE 141 SEQUENTIAL REVISION YEAR NUMBER NUMBER Palisades Plant 0500025593 Q 9 . OF Q 9
- f. Provide continuing training to engineering support personnel using a case study methodology to include as a minimum: testing program improvements, management expectations for testing and consultant/vendor scrutiny, and industry experience report evaluations. *
- g. Develop a guidance document on the formation of teams to perform modifications. The team should take the lead for the modification and have roles an~ responsibilities established.
- 2. Provide enhancements to the Test Control Program by implementing the following changes:
- a. Assign responsibility for all modification testing (FC, SC, FES, TM) to Systems Engineering which will act as the testing authority. Surveillance tests within Systems Engineering shall meet the standards established by the testing authority.
- b. Revise applicable administrative procedures to emphasize functional testing requirements and accountability for test adequacy/completeness. Ensure procedures include the expectation of 100% functional testing of anything changed or affected directly or indirectly by the work done for a project. Include a description of overlapping when relying on multiple tests to meet requirements.
- 3. Provide enhancements to the Industry Experience Program by implementing the following changes:
- a. Re-evaluate the documented responses to similar Industry Experience Reports (IN) pertaining to inadequc;1te circuit modifications and testing, (IN-88-83, IN-92-65, and IN-93-38).
- b. Develop a plan to implement reviews to comply with NRC intended actions for the n*ew (currently in draft) Generic Letter No. 95-XX: "Testing of Safety-Related Logic Circuits" (IN 95-15) published in the Federal Register May 22, 1995, page 27143.
- c. Implement an independent technical review and approval of industry experience evaluations by a Safety and Design Reviewer. Re-emphasize the importance of management expectations for industry experience reviews.
ATTACHMENT 1 CONSUMERS POWER COMPANY PALISADES PLANT DOCKET 50-255 BLOCK DIAGRAM OF RPS MODIFICATION TESTING I Page