Configuring Account Lockout

Article Number:02049

You can temporarily block login to Kintone, when password authentication failed continuously. This helps you prevent unauthorized logins from external third parties.

  1. Click gear shaped administration menu icon in the header.

  2. Click Users & System Administration.
    Accessing Kintone Users & System Administration

  3. Click Login. Screenshot: "Login" is highlighted

  4. Select the number of failed login attempts before account lockout. Screenshot: "Number of Failed Attempts Before Account Lockout" is highlighted A user can no longer log in to the service when the number of failed login attempts exceeds the value specified here.
    For details on the default value of failed login attempts, refer to "Other Default Values".

  5. Specify the time to unlock the locked-out account. Screenshot: "Account Lockout Duration (how long locked out accounts remain locked out)" is highlighted If you set "Account Lockout Duration" (how long locked out accounts remain locked out) to "Never unlock", the account is locked out forever. In this case, Kintone Users & System Administrator should manually change the user's password.
    For the default value of Account Lockout Duration, refer to "Other Default Values".

  6. Click Save.

Actions Counted as Failed Attempts

The following actions are counted as failed attempts:

  • Failed to perform password authentication
  • Entered incorrect verification code
    This action is counted only when two-factor authentication has been enabled.

For example, if you have set the maximum number of failed login attempts to "10", the account will be locked out when either of the above-mentioned failed attempts reaches "10".

When the Number of Failures Will Be Reset

Number of failures will be reset when either of the following occurs.

  • Successful login
  • Password change

Unlocking a User's Locked-Out Account

Refer to the following page:
Unlocking a Locked-Out Account