Kaana

Kaana uses Auth0, an industry-leading authentication platform:

- Enterprise-grade security
- Regular security audits
- Compliance certifications

Mix of letters, numbers, and symbols recommended

Breach detection (warns if password found in data breaches)

- Minimum 8 characters
- Mix of letters, numbers, and symbols recommended
- Common passwords blocked
- Breach detection (warns if password found in data breaches)

Your password is never stored in plain text:

- Hashed using secure algorithms
- Salted to prevent rainbow table attacks
- We cannot see or retrieve your password

HTTP-only cookie set (not accessible to JavaScript)

1. Secure session created
2. HTTP-only cookie set (not accessible to JavaScript)
3. Session validated on each request
4. Automatic timeout after inactivity

Account temporarily locked after multiple failed attempts

- Account temporarily locked after multiple failed attempts
- Prevents brute-force attacks
- Automatic unlock after cooldown period

- Unusual login locations
- Multiple failed attempts
- Abnormal access patterns

- Email addresses verified on signup
- Notifications for account changes
- Password reset requires email access

1. Request reset from login page
2. Email sent with secure link
3. Link expires after limited time
4. Must create new password
5. All sessions invalidated

Only request resets from official Kaana login page

- Only request resets from official Kaana login page
- Check email sender is legitimate
- Never share reset links
- Use a strong new password

- Don't reuse passwords from other sites
- Consider a password manager

- Your email is used for password resets
- Secure your email account

- Always log out when using shared computers
- Don't save password in public browsers

- Verify URLs before entering credentials
- We'll never ask for your password via email

1. Use a strong, unique password
 - Don't reuse passwords from other sites
 - Consider a password manager
2. Keep your email secure
 - Your email is used for password resets
 - Secure your email account
3. Log out on shared devices
 - Always log out when using shared computers
 - Don't save password in public browsers
4. Watch for phishing
 - Verify URLs before entering credentials
 - We'll never ask for your password via email

- Login notifications you didn't initiate
- Password reset emails you didn't request
- Unfamiliar activity in your account
- Settings changes you didn't make

If you notice these, change your password immediately and contact support.

- Invite and remove users
- Set role-based permissions
- Monitor user activity

- Enforce password policies
- Review access logs
- Manage API keys

- Immediately revoke access
- Block future login attempts
- Preserve data for audit

1. Click your profile menu
2. Select "Log Out"
3. Session is terminated
4. Redirected to login page

Sessions expire after a period of inactivity for security.

Authentication Security

Home

Privacy Policy

Terms of Service

Find answers and get help from Intercom Support and Community Experts

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Link, Press control-option-right-arrow to exit

Empty Help Center

Uh oh. That page doesn’t exist.

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Feature	Description
HTTP-Only Cookies	Prevents XSS attacks
Secure Flag	Only sent over HTTPS
Session Timeout	Auto-logout after inactivity
Single Session	Option to log out other sessions

Authentication Security

Login Security

Secure Authentication

Password Requirements

Password Storage

Session Security

How Sessions Work

Session Features

Account Protection

Failed Login Protection

Suspicious Activity

Email Verification

Password Reset

Secure Reset Process

Tips for Safe Reset

Protecting Your Account

Best Practices

Signs of Compromise

Administrator Controls

User Management

Security Settings

Deactivating Users

Logging Out

How to Log Out

Automatic Logout