Overview of Login Security
You can manage login security settings in the Kintone Users & System Administration.
You can configure password complexity requirements, maximum number of failed login attempts, etc.
Default Values for Simplified Login Authentication
The following table shows the default values for each feature.
For details on specific procedures, refer to "Allowing Users to Log in Easily".
Option | Description | Default Value |
---|---|---|
Save Login Name & Password | Specify whether to allow the Web browser to remember the login name and password. Some Web browsers can override this setting. |
Deny |
Automatic Login | Specify whether to enable automatic login. With this feature enabled, users stay logged in even after they close the Web browser. After the specified validity period has passed, the user needs to enter the login name and password again. |
Disabled |
Remember Me For | Set the validity period of automatic login. After the specified validity period has passed, the user needs to enter the login name and password again. |
1 day |
Session Settings | Specify the lifetime of a session. A user is automatically logged out if the time from the last access to Kintone exceeds the value specified here. |
24 hours |
Default Values for Password Change
The following table shows the default values for each feature.
For details on how to configure, refer to the following page:
Option | Description | Default Value |
---|---|---|
Allow users to change password | Specify whether to allow users to change their passwords. The following fields are not available unless you allow users to change their passwords:
|
Enabled |
Force users to change their passwords on their next login | Specify whether to force the following users to change their passwords on their next login:
|
Enabled |
Allow users to reset password | Specify whether to allow users to reset their passwords. Even when this field is set to allow users to reset their passwords, a user cannot reset their password if any of the following conditions is true:
|
Enabled |
Default Values for Password Restrictions
The following table shows the default values for each feature.
For details, refer to "Specifying Password Complexity and Password Expiration".
Option | Description | Default Value |
---|---|---|
Minimum Number of Characters for the User Password1 | Specify the minimum length of passwords for users, excluding Kintone Users & System Administrators. | 8 characters |
Minimum Number of Characters for the Administrator Password1 | Specify the minimum length of passwords for Kintone Users & System Administrators. | 8 characters |
Password Complexity 1 | Specify password complexity requirements. | Combination of letters and numbers |
Allow users to use login name as password 1 | Specify whether to allow users to use their login names as their passwords. | Disabled |
Password Reuse Limit 1 | Specify the number of times a password must be changed before an old password can be reused. The number of password changes includes changes by the user and by administrators. |
1 (Current password) |
Password Expiration | Specify the lifetime of a password. For details, refer to "Password Expiration". |
Unlimited |
1: This is applied when users set a password. This is not applied to passwords that are set in the Kintone Users & System Administration.
Other Default Values
Following table shows the default values for each feature.
Option | Description | Default Value |
---|---|---|
Number of Failed Attempts Before Account Lockout | Set the maximum number of failed login attempts that are allowed. Users are temporarily blocked to log in to Kintone when the number of failed login attempts exceeds the specified value. The number of failed login attempts is reset by the following events:
|
10 |
Account Lockout Duration (how long locked out accounts remain locked out) | Specify the time to wait before a locked account is unlocked. | 3 minutes |
Additional Message on Login Failure | Set the message to display when users fail to log in. For details, refer to "Setting Login Failure Messages". |
Not configured |
SAML Authentication | Enable single sign-on to Kintone with SAML authentication. | Disabled |
Two-Factor Authentication | Specify whether to allow users to use Two-Factor Authentication. For details, refer to "Using Two-Factor Authentication". |
Enabled |