# Security Settings

Manage security options for your organization.

### Accessing Security Settings

{% stepper %}
{% step %}
Go to **Settings** and select **Security**.

Note: Requires Admin or Owner role.
{% endstep %}
{% endstepper %}

### Authentication

### Single Sign-On (SSO)

If enabled, users can log in with your organization's identity provider:

* Login with company credentials
* Centralized access management
* Enhanced security

### Password Policies

Configure password requirements:

* Minimum length
* Complexity requirements
* Password history
* Expiration period

### Session Management

### Session Timeout

Set how long users stay logged in:

* Idle timeout duration
* Maximum session length

### Active Sessions

{% stepper %}
{% step %}
Go to **Security**.
{% endstep %}

{% step %}
View active sessions across users.
{% endstep %}

{% step %}
Terminate sessions if needed.
{% endstep %}
{% endstepper %}

### Force Logout

Administrators can:

* End specific user sessions
* Force all users to re-authenticate

### Access Control

### IP Restrictions

{% stepper %}
{% step %}
Go to **Security**.
{% endstep %}

{% step %}
Enable IP restrictions.
{% endstep %}

{% step %}
Add allowed IP ranges.
{% endstep %}

{% step %}
Save.
{% endstep %}
{% endstepper %}

Users outside allowed IPs cannot access Kaana.

### Audit Logging

Track security-relevant events:

* Login attempts
* Permission changes
* Data access
* Configuration changes

View audit logs to monitor activity.

### Data Protection

### Data Export

Control who can export data:

* Restrict export permissions
* Audit export activities

### Data Retention

Configure data retention:

* How long deleted items are kept
* Archive policies

### Two-Factor Authentication (2FA)

### Require 2FA

{% stepper %}
{% step %}
Go to **Security**.
{% endstep %}

{% step %}
Enable **Require 2FA**.
{% endstep %}

{% step %}
Set grace period for setup.
{% endstep %}

{% step %}
Save.
{% endstep %}
{% endstepper %}

### 2FA Methods

Supported methods:

* Authenticator apps (recommended)
* SMS codes
* Backup codes

### Security Best Practices

### Regular Audits

* Review user access quarterly
* Check audit logs for anomalies
* Remove unnecessary permissions

### Password Security

* Enforce strong passwords
* Require regular changes
* Educate users on security

### Access Management

* Use least-privilege principle
* Promptly deactivate departing users
* Review integrations regularly

### Monitoring

* Check audit logs regularly
* Set up alerts for suspicious activity
* Review failed login attempts

### Compliance

### Data Handling

Kaana supports compliance needs:

* Data stored securely
* Encryption in transit and at rest
* Regular security updates

### Reporting

For compliance audits:

* Export audit logs
* Access activity reports
* Review permission configurations

### Incident Response

{% stepper %}
{% step %}
Document what you observed.
{% endstep %}

{% step %}
Check audit logs.
{% endstep %}

{% step %}
Revoke suspicious access.
{% endstep %}

{% step %}
Contact Kaana support.
{% endstep %}

{% step %}
Notify affected users if needed.
{% endstep %}
{% endstepper %}

### Getting Help

For security concerns:

* Contact your administrator
* Reach out to Kaana support
* Report vulnerabilities responsibly