Configuring Realm Security Settings

This topic refers to functionality that is only available to accounts on the Business-level or above plans. If you do not see the functionality described here, either your account or realm has not been configured to show it, or your account is not on one of those plans.

Securing user credentials within your enterprise is key to protecting your data. If you leverage SAML for SSO, Quickbase will inherit the multi-factor authentication settings of your Identity Management (IdM) system. Alternatively, two-factor authentication (2FA) (also known as two-step authentication) is available in Quickbase and you can implement it at the realm level or account level.

The two-step authentication security method provides the following benefits to an enterprise:

  • Improves security by requiring a second form of identification

  • Increases productivity and flexibility for mobile employees by providing secure access

  • Lowers helpdesk and security management costs

  • Reduces fraud while building secure online business relationships

With two-step authentication, a user signing in to Quickbase must provide two means of identification from separate categories of credentials:

  • Username/password combination, and

  • A security code provided through email

As a realm admin, you can secure user credentials by configuring password polices through Quickbase. You can set specific password policies across all your Quickbase accounts and applications.

As part of password policy configuration, you can set:

  • Session controls – To limit the number of concurrent sessions, set an inactivity timeout, limit the number of sign-in retries, and require two-step authentication.

    Note: Allowing users to remain signed in can expose security risks.

  • Password controls – To set password controls you can select one of two methods:

    • Implement a single-sign on (SSO) method. Select this method to have Quickbase inherit password security controls from your identity management provider (IdM) such as: password complexity, password expiration, and two-step authentication.
    • Enable Quickbase to manage password controls.