Leyden Online & LCU Mobile Security Features & Tips

The following information describes the security features of Leyden Online and/or LCU Mobile. The information here is to help members fully understand how to use these security features or describe what security features will be enforced. All security measures are designed to protect our members accounts and financial information. They are based on industry standards, conventions, and best practices, as well as, guidance, recommendations, or requirements of the FFICE, the NCUA, the IDFPR, the FTC, or other reputable sources.

Minimum Browser Requirements: Members are encouraged to use the most recent version of Internet browser available. Popular browsers include: Internet Explorer, Mozilla Firefox, Google Chrome, and Apple Safari. Using an older version of your Internet browsers may produce unexpected results, improper page formatting, or non-functional features or buttons.

We are aware that Windows Internet Explorer version 8 does not function properly with the new security features described in this page. If you are using Windows Internet Explorer version 8 or lower, please upgrade your browser or use an alternate browser for successful access to Leyden Online.

Passwords Requirementss: Minimum password requirements are enforced to prevent easy guessing or insufficient password strength. Passwords are case-sensitive. Passwords must be between 8 and 16 characters and must include upper and/or lower case letters, at least 1 number, and at least 1 special character (for example: ` ~ ! @ # $ % ^ * ( ) _ + – = { } | [ ] & \ : ” ; ‘ < > ? , . /).

Password Change Frequency: Password changes will be required every 90 days. A reminder message will be displayed within 30 days of a required password change. You have the option of changing your password immediately or wait until the password expires, in which case you will be prompted to change your password at next login. You may change your password at any time by selecting “Change Password” from the User Profile menu.

Security Questions: You will be asked to select and provide responses to 3 security questions. There will be a variety of questions to choose from. Security questions will be displayed periodically while using Leyden Online or Online Bill Pay. Providing the proper responses will verify your authorization to the system. You may change your security questions or responses at any time by selecting “Security Settings” from the User Profile menu.

Please note that both Leyden Online and Online Bill Pay make use of security questions for authentication. Each system works independently and does not affect the questions or responses submitted into each system. Please be aware of which system is prompting security questions so the correct response can be provided.

Invalid Password Lock: A security lock will be placed on an account after 5 consecutive unsuccessful login attempts due to an incorrect password. This will prevent any further access to your account by Leyden Online or LCU Mobile. Once this occurs, even using the correct password will deny access. Members must call the credit union office to have the security lock removed by an employee.

Temporary Password Request: Members may request a one-time-use temporary password in the event they cannot remember their current password. A temporary password will only be sent to a trusted email address already on file within Leyden Online. It is important to verify that your accurate email address is on file within Leyden Online before this becomes necessary. Once requested, the temporary password will expire if not used within 20 minutes. If the temporary password has expired, it will be necessary to request another temporary password. Please note that if an account becomes locked due to multiple incorrect password attempts, requesting a temporary password will not unlock the account. Attempting to use the temporary password on a locked account will be unsuccessful. Members must call the credit union office to have the security lock removed by an employee.

Please note that it is possible for your email service provider to incorrectly identify your temporary password email message as “junk mail” or “spam.” It may be necessary for you to check your junk mail folders to find the temporary password email message if this occurs.

Experience has shown that impatience has hindered successful use of a temporary password at times. Once requested, a temporary password email message is usually in a member’s inbox within 1 minute. At times, it has taken longer. An impatient member might request a 2nd temporary password shortly after not finding the expected email message in their inbox. If a 2nd request is performed, it will override the 1st request. When a member eventually finds a temporary password email message in their inbox, it is most likely from the 1st request, and is no longer valid due to the 2nd request overriding it. Any attempt to use the 1st temporary password will cause an invalid login and further complicate successful access to Leyden Online. Please be patient while waiting for a temporary password email message. If you are not receiving an email after a temporary password request, it may be that an old or invalid email address is on file. Members must call the credit union office to verify an accurate email address is on file for Leyden Online.

Also be aware, it has been reported that if you attempt to copy-n-paste the temporary password from the email message into the Login screen, the copy may include a trailing space that will be incorrectly pasted into the password box (i.e. “abcdefghi” will copy as “abcdefghi_”). This will cause an invalid password error and further hinder a successful login to Leyden Online. This may be difficult to notice since only “masking dots” are displayed in place of your password. We highly suggest you type the temporary password or use caution when using copy-n-paste.

Mobile App Device Authorization: LCU Mobile is further secured by authorizing the mobile device(s) you wish to use to access your account. Upon first use of LCU Mobile from an unknown device, you will be required to authorize that device to allow access to your account. Follow the on on-screen instructions to complete this security measure. This security feature permits access to your account only to devices you own or have authorized when using LCU Mobile. Trusted devices can be deleted or maintained within Leyden Online by selecting “Device Activation” from the Services menu.

If the LCU Mobile App is ever removed/uninstalled/deleted from your device, but reinstalled it at a later time, it will be necessary to authorize your device again. Follow the on on-screen instructions to complete this security measure.

Trusted Computer Registration: A frequently used computer or device can be registered within Leyden Online. Using a registered computer will bypass some security measures to ease access to your account. Only computers you use regularly use should be registered. Registration uses browser cookies to identify your trusted computers. If your browser does not allow cookies to be saved or if cookies are ever deleted from your registered computer, it will need to be registered again to take advantage of this feature. Registered computers can be deleted or maintained within Leyden Online by selecting “Device Activation” from the Services menu. Computer registration is not required to use Leyden Online and will not prevent access to your account from any computer at any time.

Password Managers and AutoComplete: Leyden Credit Union does not recommend using password management software or auto-complete features of your web browser. Experience has shown those programs do not work well with Leyden Online and will often cause the incorrect passwords to be used after a password change has been performed. This is further complicated by the fact that only “masking dots” are displayed in the password box, making it impossible to confirm if the correct password is being used. We highly suggest you type your password or use caution when using password managers or auto-complete features of your web browser.

Session Time-Out Security: If there is no activity within Leyden Online or LCU Mobile after 20 minutes, your secure session will expire as a security measure. Once this occurs, any click or action taken on the web page will bring you back to the main login page. You will be required to log in again to restart your session. This will ensure your the security of your account in the event you briefly leave your computer, if you use a public computer, or if you use a shared computer, your account cannot be accessed by other person if a proper log off is not performed.

Further enhancements or adjustments to security measures will be evaluated over time and may be introduced as necessary. We will notify members of any changes by email and newsletter. Please make sure your email address is accurate on the email page within Leyden Online in order to receive future announcements.

Leyden Online & eStatements services are provided by a third-party service partner. Enrollment & sign-in access to your account & statements will be serviced at the MOBICINT.NET website.

Leyden Online BillPay is provided by a third-party service partner. Enrollment & access to online bill payment will be serviced at the BILLPAYSITE.COM website.

2701 N 25th Avenue Franklin Park, IL 60131 Call 847-455-8440 Fax 847-455-1245 Contact Us