SecurID Card

The SecurID Card

A SecurID card is needed to authenticate yourself to any one of the various systems that require proof that you are a valid Weizmann user. Some of the different systems that require a SecurID card are the firewall system, the remote access system, and some sensitive computer systems. In the future, some administrative tasks may require the SecurID card as well.

Obtaining your SecurID Card

In order to obtain a SecurID card, you must be registered for both Remote Access and SecurID. Your department administrator will register you via Internal Services system. All registered users to these services are entitled to receive one SecurID card free of charge. A replacement can be purchased for $70.

Using your SecurID Card for the First Time

To gain access to one of our machines, you must enter a valid SecurID PASSCODE, which is made up of two factors:

your secret, memorized, Personal Identification Number (PIN)
the 6-digit tokencode currently displayed on your SecurID Card

The first time you use your new card, you must define your PIN, if it was not defined for you when you picked up the card.

The PIN is composed of 4 to 8 digits. Since you cannot define your PIN using the remote access system, you must go to a computer inside the Institute. Open a web browser and connect to http://block.weizmann.ac.il:900.

When prompted for your userid, enter the userid under which you registered for your SecurID card. At the prompt for the PASSCODE, enter the 6-digit number currently displayed on your card. You will then be prompted to create a PIN. Follow the instructions on the screen. When you are authenticated and your PIN has been created, enter 2.

From this point on enter the PIN followed by the 6 digits displayed on the SecurID card, when prompted for a PASSCODE.

The SecurID cards generate and display random token codes that change at a specified time interval (typically every 60 seconds). With a conventional security system it is easy for someone to learn your password and log in under your identity. Requiring two factors ensures reliable identification and authentication. Because this system creates an audit trail that cannot be repudiated, you may be held accountable for activities recorded identifying you as the perpetrator. Avoid the unauthorized use of your identity and privileges by protecting the secrecy of your PIN and the possession of your token.

Do not give your PIN to anyone else and do not forget it. If you do forget it, come back to the Computing Center office and you will given a new PIN.

Typical Use of a SecurID Card

A typical login session when using a SecurID card is as follows:

login: userid Enter PASSCODE:

When prompted to enter your PASSCODE, type in your PIN followed by the tokencode currently displaying on your card. Then press RETURN. If all goes well, the system should display

PASSCODE accepted.

You can now work as usual. Unfortunately, there may be occasions when something goes wrong, and you will be denied entry. In that case, there are several helpful instructions to follow.