User Management and Authentication
We offer a variety of management features in order to
keep user accounts secure.
Account Integration
User accounts can be integrated with Active Directory and various account management services.
This enables secure account operations balanced between user convenience and administrative load.
For integration, an integrated environment needs to be established by yourself or Kintone partners.
Single sign-on using SAML
SAML authentication is supported as standard, enabling single sign-on (SSO) into Kintone with a configured identity provider (IdP).
Integrating with Microsoft Entra ID
The following website provides information on how to integrate with SSO with Microsoft Entra ID and AD Federation Service (ADFS).
Synchronizing account information with provisioning
User provisioning using SCIM is supported as standard, enabling account information managed through Identity Providers (IdP) to be synched with Kintone.
Settings
The following website provides information on how to reflect users from Identity Providers(IdP) to Kintone.
Account integration using integration solutions
Single sign-on is possible with integration solutions.
Features that Prevent
Unauthorized Access
You can combine features that prevent unauthorized access
(two-factor authentication with an authentication app, IP address restrictions, and password policies)
with authentications that use login name and password.
Two-factor authentication on mobile apps
With this feature enabled, users are required to input a "verification code" from an authentication app installed on their mobile device, in addition to the login name and password when logging in. A new verification code is generated for each login.
-
1
Enter the Login Name and Password for kintone.com
-
2
Check the verification code on the mobile device's authentication app
-
3
Enter the verification code
-
4
Begin using the service
IP address restrictions
IP address restrictions can be set to allow access only from specific IP addresses.
Password policy and account lock setup
Administrators can define password policies (mandating a certain degree of complexity, that the password be different from the login name, etc.) to meet the requirements of the company.
Accounts can also be set to be automatically locked after a certain number of failed login attempts.
Activity Log Checking
Login history and audit logs can be recorded.
The audit log provides information on "when", "who", and "what" was done.
Login history
You can view Kintone.com login history for the last two weeks. This helps check for unauthorized login attempts.
It also allows the user to see the currently active sessions and terminate them if necessary.
Audit logs
Logs can be set to record who performed what operations.
You can also export audit logs to files and set up email notifications by log level.
Access Permission Control
Various data access permissions can be set up depending on the account
and the organization to which it belongs.
