Access

 


L-3 ILEX Two-Factor Authentication User Guide
(RSA SecureID Token)

Overview

ILEX Systems has adopted the mandatory L3 policy for implementing two-factor authentication on all accessible “non-public facing systems” whether accessed through the internet or any other means. In compliance with this directive, all ILEX employees/subcontractors will be receiving an RSA SecureID token (fob). This token will allow remote access to a newly implemented ILEX VPN secure portal. This external method of access will be REQUIRED to access such resources as the Intranet, IBS, SharePoint, Email, etc. Access to these sites and resources as they presently exist will be discontinued shortly. Notification will be forthcoming regarding the final cut-off period.

Below, are brief instructions required to set up an RSA token for system access. Please follow them precisely and contact the IT department if there are any questions or assistance is required. The IT department may be contacted for token-only related assistance/requests at the following email address: ILEX.Tokens@l-3com.com all other inquiries should still be directed to the technical support mailbox: ILEX.TechSupport@L-3Com.com.

Software Prerequisites

Operating System:

Windows 2000, Windows XP, Linux, MacOS

Browser:

MS Internet Explorer

Antivirus:

Installed with up-to-date definitions (Symantec/Norton, McAfee, Trend Micro etc.)

Personal Firewall:

Enabled (optional requirement for higher-level system access)

Configuration

(Home or Remote Location)

  1. Before starting, launch the Internet Explorer Browser and add HTTPS://*.ilex.com and HTTPS://*.ilex.L-3com.com to the "Trusted Sites" list. This site list can be found under "Tools ŕ Internet Options ŕ Security ŕ Trusted Sites ŕ Sites" from within Internet Explorer.

******  If you are unable to add to the “Trusted Sites” list, continue with step 2. ******

  1. Connect to https://access.ilex.L-3com.com using Internet Explorer.

****** If you were unable to add to the “Trusted Sites” list, you may be prompted with a Security Warning after the web site’s certificate has been verified, asking if you wish to continue. Select Yes. ******

  1. Enter your Username in the following format without quotes: "L3ilex\XXXX" where XXXX is your unique ILEX network account username. For employees or subcontractors with ILEX email accounts, this will be the username that you use when connecting to your ILEX Webmail account. For customers and subcontractors that only access IBS, you will be provided with a username when you receive your RSA token."

  2. Next use the 6-digit number on the front of your token as the initial passcode.

  3. The first time you login, you'll be prompted to create a 4 to 8 digit PIN (and to re-enter your PIN).

NOTE:

UNDER NO CIRCUMSTANCES SHOULD YOU WRITE DOWN YOUR PIN,
SO SELECT A VERY SIMPLE PIN THAT WILL BE EASY TO REMEMBER.

 

THE PIN MUST BE LESS THAN 8 CHARACTERS.

 

YOU WILL ONLY NEED TO CREATE YOUR PIN ONCE, WHICH WILL BE VALID REGARDLESS OF WHAT COMPUTER YOU ARE USING.

 

  1. You will then be asked to wait for the token number to change and then re-enter your FULL passcode. If you don't wait for the token to change, your login will fail, so please make sure that the token number on your fob changes before you enter your passcode. For this passcode entry (and all future logins), you will enter your 4-to-8 character PIN plus the 6-digit token number displayed on your RSA fob (e.g. "MyPin123456")."

  2. You may be prompted to wait while the connection is established. At this time, if you are prompted to accept certificates from ILEX and Aventail, accept these certificates. After successful login, some basic links will be present (e.g. employee website, IBS, Sharepoint etc.). Links and features that are accessible will change depending on the security of the client PC that is attached. For example, an ILEX managed asset will achieve greater access than a personal desktop. HTTPS links should work from any remote PC as long as an antivirus program is installed.

  3. Your token is now active.

You may connect to the access web portal (https://access.ILEX.L-3Com.com) from inside the ILEX office ONLY in order to complete the initial PIN creation. DO NOT test any links or applications from the office as applications on your PC as other LAN applications will break. After completing the initial password change, the RSA token is meant to be used for remote access ONLY.

Utilizing a “single sign-on” is presently not available on the ILEX VPN. The ILEX IT department will be reviewing the feasibility of this at a later date.

Troubleshooting and Questions – Who to Contact

  • If a token is lost or stolen, please IMMEDIATELY contact ILEX.Tokens@L-3Com.com and your local ILEX security officer.  If this is a weekend, please contact your group manager. A lost or stolen token will be disabled to ensure that our systems are not at risk.

  • If you cannot read your 6 digit code because the display is shadowed or blank, please send email to ILEX.Tokens@L-3Com.com. You may have a damaged token or require a battery replacement.

  • If you have forgotten your personal code, please contact ILEX.Tokens@L-3Com.com.

  • If, after successfully logging into https://access.ILEX.L-3Com.com, you experience problems logging into a specific ILEX website (e.g. webmail, employee website, IBS), contact ILEX.TechSupport@L-3Com.com for assistance with that specific website login.

 

 

 

 

 

  L3 Communications ILEX Systems  

246 Industrial Way West, Eatontown, NJ 07724

 (732) 380-9400

L-3 Corporate
Last Updated 03/06/2007