Configuring Account Lockout
You can temporarily block login to Kintone, when password authentication failed continuously. This helps you prevent unauthorized logins from external third parties.
-
Click
in the header.
-
Click Users & System Administration.
Accessing Kintone Users & System Administration -
Click Login.
-
Select the number of failed login attempts before account lockout.
A user can no longer log in to the service when the number of failed login attempts exceeds the value specified here.
For details on the default value of failed login attempts, refer to "Other Default Values". -
Specify the time to unlock the locked-out account.
If you set "Account Lockout Duration" (how long locked out accounts remain locked out) to "Never unlock", the account is locked out forever. In this case, Kintone Users & System Administrator should manually change the user's password.
For the default value of Account Lockout Duration, refer to "Other Default Values". -
Click Save.
Actions Counted as Failed Attempts
The following actions are counted as failed attempts:
- Failed to perform password authentication
- Entered incorrect verification code
This action is counted only when two-factor authentication has been enabled.
For example, if you have set the maximum number of failed login attempts to "10", the account will be locked out when either of the above-mentioned failed attempts reaches "10".
When the Number of Failures Will Be Reset
Number of failures will be reset when either of the following occurs.
- Successful login
- Password change
Unlocking a User's Locked-Out Account
Refer to the following page:
Unlocking a Locked-Out Account