Overview of Login Security

Article Number:02052

You can manage login security settings in the Kintone Users & System Administration.
You can configure password complexity requirements, maximum number of failed login attempts, etc.
Screen example

Default Values for Simplified Login Authentication

The following table shows the default values for each feature.
For details on specific procedures, refer to "Allowing Users to Log in Easily".

Option Description Default Value
Save Login Name & Password Specify whether to allow the Web browser to remember the login name and password.
Some Web browsers can override this setting.
Deny
Automatic Login Specify whether to enable automatic login.
With this feature enabled, users stay logged in even after they close the Web browser. After the specified validity period has passed, the user needs to enter the login name and password again.
Disabled
Remember Me For Set the validity period of automatic login.
After the specified validity period has passed, the user needs to enter the login name and password again.
1 day
Session Settings Specify the lifetime of a session.
A user is automatically logged out if the time from the last access to Kintone exceeds the value specified here.
24 hours

Default Values for Password Change

The following table shows the default values for each feature.
For details on how to configure, refer to the following page:

Option Description Default Value
Allow users to change password Specify whether to allow users to change their passwords.
The following fields are not available unless you allow users to change their passwords:
  • Minimum Number of Characters for the User Password
  • Password Complexity
  • Allow users to use login name as password
  • Password Reuse Limit
  • Passwords Expire In (meaning that passwords never expire)
Note that Kintone guest users are always allowed to change their passwords. Therefore, the settings of the fields listed above are always applied to the guest users.
Enabled
Force users to change their passwords on their next login Specify whether to force the following users to change their passwords on their next login:
  • Users who are added after this setting is enabled
  • Users whose passwords are changed by Kintone Users & System Administrator after this setting is enabled
This setting is available when "Allow users to change password" option is enabled.
Enabled
Allow users to reset password Specify whether to allow users to reset their passwords.
Even when this field is set to allow users to reset their passwords, a user cannot reset their password if any of the following conditions is true:
  • No e-mail address is set in the user's profile
  • The e-mail address of the user is also used for another user
  • kintone.com is the only way for the user to receive e-mail.
Enabled

Default Values for Password Restrictions

The following table shows the default values for each feature.
For details, refer to "Specifying Password Complexity and Password Expiration".

Option Description Default Value
Minimum Number of Characters for the User Password1 Specify the minimum length of passwords for users, excluding Kintone Users & System Administrators. 8 characters
Minimum Number of Characters for the Administrator Password1 Specify the minimum length of passwords for Kintone Users & System Administrators. 8 characters
Password Complexity 1 Specify password complexity requirements. Combination of letters and numbers
Allow users to use login name as password 1 Specify whether to allow users to use their login names as their passwords. Disabled
Password Reuse Limit 1 Specify the number of times a password must be changed before an old password can be reused.
The number of password changes includes changes by the user and by administrators.
1 (Current password)
Password Expiration Specify the lifetime of a password.
For details, refer to "Password Expiration".
Unlimited

1: This is applied when users set a password. This is not applied to passwords that are set in the Kintone Users & System Administration.

Other Default Values

Following table shows the default values for each feature.

Option Description Default Value
Number of Failed Attempts Before Account Lockout Set the maximum number of failed login attempts that are allowed.
Users are temporarily blocked to log in to Kintone when the number of failed login attempts exceeds the specified value.

The number of failed login attempts is reset by the following events:
  • The user is logged in successfully.
  • The user or administrator changes the password of the user.
For details, refer to "Specifying the Maximum Number of Failed Login Attempts".
10
Account Lockout Duration (how long locked out accounts remain locked out) Specify the time to wait before a locked account is unlocked. 3 minutes
Additional Message on Login Failure Set the message to display when users fail to log in.
For details, refer to "Setting Login Failure Messages".
Not configured
SAML Authentication Enable single sign-on to Kintone with SAML authentication. Disabled
Two-Factor Authentication Specify whether to allow users to use Two-Factor Authentication.
For details, refer to "Using Two-Factor Authentication".
Enabled