General
In this section, you configure the basic security settings of KentixONE. These include the communication key for encrypted device communication, the behavior of session management, and the password policies for user accounts.
Communication Key
The communication key encrypts communication between KentixONE devices. The key must be stored identically on all affected devices to enable secure and reliable communication.
The operation of KentixONE requires that the communication key is the same on the Main Device and all Satellite Devices.
Different communication keys lead to errors when adding devices and during data synchronization.
Session Management
The session management allows you to control how login sessions are handled in the browser.
Discard Authentication Token After Login
If this option is enabled, the authentication token (Bearer Token) will not be stored in the browser's session storage after login. This prevents it from being accessible to local users of the browser.
A browser's session storage is accessible to users. Normally, the token is saved there to stay logged in when the page is reloaded. If the option is active, the user will be redirected to the login page after a reload.
Password Policy
Password policies define the requirements for secure user passwords. The following parameters are available:
Password Policy (Selection)
Use the dropdown to select the basis of the policy.
| Type | Requirements |
|---|---|
| Off | No password policy implemented - minimum requirements disabled |
| Long Password (BSI Standard) | Minimum length of at least 25 characters, consisting of a combination of uppercase and lowercase letters |
| Complex Password (BSI Standard) | Minimum length of at least 8 characters, mandatory use of uppercase and lowercase letters, digits, and special characters |
| Custom | Define your own rules |
Uppercase Letters
Requires at least one uppercase letter (A–Z) in the password.
Lowercase Letters
Requires at least one lowercase letter (a–z) in the password.
Numbers
Requires at least one digit (0–9) in the password.
Special Characters
Requires at least one special character (e.g., # $ % & @ ^ ~ ( ) [ ] , . ; : ' " ` / \ _ - < > * + ! ? =).
Password Length
Defines the minimum length of a user password (e.g., 8 characters or more). Longer passwords significantly increase security.
Renew Password After
Specifies the period after which a password is automatically marked as invalid, forcing a change. Select "Never" if no automatic renewal is desired.
Set Password on First Login
Prevents insecure initial passwords: A newly created user must change their password upon first login.
Recommend users to utilize passphrases or unique passwords generated by password managers. A combination of all rules with a minimum length of 12+ characters provides a good security level in practice.