Set policy for the password that members use to sign in to NAVER WORKS. Also, you can set limits on the number of attempts to sign in.
You can select whether to enable sign-in methods other than entering an ID/password.
- Select 'Security' from the left to expand the menu and press 'Account Security' to access the page. On mobile, tap the button to access the menus.Â
- You can change the settings by pressing  on the right for each field.
- At the top right, press 'Save' to apply changes.
Password policies
To secure the accounts of members who sign in by entering a password, you can change the settings on password register/expiration and incorrect passwords.
Changing this setting does not force members to sign out of the service.
When members register a new password after changing the settings, they will create a password according to the new policy.
- Select 'Security' from the left to expand the menu and press 'Account Security' to access the page. On mobile, tap the button to access the menus.Â
- You can change the settings by pressing the button on the right for each field.
- At the top right, press 'Save' to apply changes.
The following are the detailed descriptions of each field.
Detailed setting | Option |
Password format | Members must generate a password in the format specified by the administrator during the registration process.
English can be used in uppercase and lowercase letters. |
Password length | Set the minimum length of passwords for members to use.
|
Password expiration | Set how long the password is allowed to use without changing.
|
Restrict password reuse | Restrict re-use of recently used passwords.
|
Limit the number of login attempts | Suspend an account with several sign-in attempts with wrong passwords.
|
Bulk reset passwords | You can reset the passwords of all members at once.
Only members with an 'In use' status and a registered password are eligible for a reset. However, Super Admins and members who have not registered their ID/password after signing up using Quick Login will be excluded. here are two ways to reset.
For security reasons, if a member needs to change their password, force the password reset first and then send a change request again. |
Login policy
Set up a company-wide login policy for security.
- Select 'Security' from the left to expand the menu and press 'Account Security' to access the page. On mobile, tap the button to access the menus.Â
- You can change the settings by pressing the button on the right for each field.
- At the top right, press 'Save' to apply changes.
The following are the detailed descriptions of each field.
2-step verification
2-step verification is an additional authentication step that members go through when logging in to keep their accounts safe.
The administrator can make the 2-step verification ‘Required - Apply 2-step verification to all members’, requiring all members to activate the 2-step verification. Or make it ‘Optional – Apply according to members' selection', so that the members can selectively activate the 2-step verification.
- When the 2-step verification is enabled, members will receive a one-time verification number via their personal email addresses or mobile phone numbers (text message) registered in their personal information. However, members who are logging in with their mobile phone numbers for 2-step verification can only receive the verification number via their personal email addresses.
- Each member will undergo a process of verifying their personal email addresses and mobile phone numbers saved in their personal information at the time when the 2-step verification is activated. If you change the email address or mobile phone number in your personal information after enabling the 2-step verification, the verification number will be sent to your new personal email address or mobile phone number.
-
If you are using Business Support products including Attendance and Approval, you can set up 2-step verification for each service by selecting ‘Go to Business Support Settings Two-Factor Authentication'.
Features | Options |
2-step verification
|
|
Skip 2-step verification on trusted devices
|
 |
If the 'Organizational Integration > Member' setting has been activated in Developer Console, each member is not allowed to change their personal information. Therefore, they cannot enter the 2-step verification.
If this is the case and 2-step verification is set to required, members who have not saved their personal email address or mobile phone numbers in personal information cannot log into their account. To prevent this situation, please make sure all members have entered their personal email addresses or mobile phone numbers in advance.
Keep logged in to PC app/Drive Explorer
You can set whether members stay signed in when they sign in to the PC app or Drive Explorer.
If the administrator turns on and members use the Keep logged in function, members do not need to log in every time they restart the PC app or Drive Explorer.
If the administrator turns off this function, all members within the domain must log in from the next login. Also, the function setting is not available in Settings.
Function | Option |
Stay logged in to PC app/Drive Explorer |
|
Limit simultaneous web access
Limit the number of web browsers that can simultaneously access an account.
Function | Option |
Limit simultaneous web access |
|
Idle session timeout
Set to automatically log out after a set period of time without any activity.
If you log in again, you can use the service again.
However, when set to 'No limit' on the PC and mobile web, the actual idle session timeout is set to 24 hours and can be extended up to 30 days if you select 'Keep me logged in' when logging in on PC Web.
Function | Option |
PC web/Mobile web |
|
Mobile app |
|
Login method
You can allow members to log in using the quick login method instead of entering their ID and password.
Login with LINE
Instead of entering ID and password, members can sign in to NAVER WORKS with their LINE account.
- First, members must connect their NAVER WORKS and LINE account to sign in using this method.
- The connected LINE account is only used for signing in and is not displayed in the NAVER WORKS services.
- For security, administrators can disable the 'Login with LINE' function for specific members.
Function | Option |
Login with LINE |
|
Login with phone number
Instead of entering ID and password to sign in to NAVER WORKS, members can receive a one-time verification number to their mobile phone number.
To use the above login method, members must verify their identity with a one-time verification number sent to their phone and connect their phone number to the NAVER WORKS account.
- If you are unable to receive text messages with the registered mobile phone number, you can receive a verification number through a service notification message.
- Members can connect a new number or a mobile phone number in their personal information.
- If you connect the phone number different from the one in your personal information, the connected phone number will only be used for signing in to NAVER WORKS. It will not be displayed or used. (For the lost ID/Password, the mobile phone number in the personal information is used.)
Function | Option |
Login with phone number |
|
Mobile app Quick login
Instead of entering ID and password to sign in to NAVER WORKS, members can log in with the PIN or biometric authentication method saved in the mobile app.
To use this login method, members must set to use Quick login function and then register a PIN.
However, depending on the internal usage conditions, this setting may not be displayed.
Function | Option |
Quick login (Mobile app) |
|
Login with the phone unlock method (FIDO)
Members can log in using the mobile phone unlock method such as biometric authentication set on the device.
First, members can log in in this way by registering trusted device with the NAVER WORKS app installed as their device, and turning on the 'Login with the phone unlock method' setting.
- If a member logs in to the mobile app by unlocking their phone, 2-step verification will not proceed.
- When a member logs in to PC Web, PC App, or Drive Explorer by unlocking their mobile phone, they can log in by approving the login authentication request on the device by entering their ID or mobile phone number of their trusted device. The administrator can set whether to proceed with a 2-step verification at this point.
- Administrators can check the device names registered by members for security management and remove specific devices.
Function | Option |
Login with the phone unlock method (FIDO) |
|