Account Security in Salto KS
At Salto KS, security is a top priority—for your account, users, and site. To help you stay secure, we have drafted some security best practices. We recommend you follow them to strengthen the security of your Salto KS installation.
This information pertains to all Salto KS users but is important to user roles with privileges such as site owners, site admins, site super users.
Scroll down to the last section for Larry Support and Larry Commissioning users.
Salto KS account security
Salto KS offers several security benefits compared to traditional mechanical keys, but to fully benefit from these, it's important to configure your Salto KS account and site following our best practices. Your Salto KS account has replaced your mechanical key, so keeping it safe is essential. Our recommendations to increase account security are as follows:
- Use a secure password: a password manager can help you generate and store a unique and strong password. How to change your password in Salto KS.
- Avoid sharing login credentials: instead, create individual accounts for each user to ensure precise access control, tailored permissions, and clear activity tracking when needed.
- Enable two-factor authentication to protect your account.
- Periodically check your trusted devices and sessions on your Profile & Settings page by scrolling down to Session Management and clicking Manage to ensure you recognize the devices listed.
Managing login sessions in Salto KS
How to enable 2FA
On your web app: Click on your profile picture, navigate to Profile & Settings, and scroll down to the Security & Services section.
On your Salto KS mobile app: Go to Settings, tap your profile picture, and select the first tile with your name to be redirected to your Salto KS profile in your mobile browser.
On your Salto KS Keychain app: Tap your profile picture, click Profile & Settings, and then click Edit Profile.
User management security
Salto KS offers easy user management, but giving users access to your site is like giving them a mechanical key. We recommend you take the following actions to keep your user management under control:
- Be conservative when granting users elevated privileges such as site admin. Users with admin permissions can grant themselves access to your locks. Do not make them admin if you do not want them to access all your locks.
- Periodically review your users and block or remove those who no longer need access to Salto KS or your locks.
- Be mindful of inviting external users, such as installers, to your Salto KS site. If you do add them, be sure to remove them once they no longer need access.
Site security
Below are general recommendations to increase the security of your Salto KS site:
- Ensure your admin and super users know the consequences of adding someone to a site.
- Consider using the principle of least privilege: Does everyone need 24/7 access to all locks?
- Set up notifications for abnormal events, such as lock openings in the middle of the night; it will help you detect issues faster.
Larry Commissioning and Larry Support security
As a Larry Support user or a Salto KS installer using Larry Commissioning, you can follow the steps below to cover security best practices:
- Enable two-factor authentication: click on your profile picture, navigate to Profile & Settings, and scroll down to the Security & Services section.
- Periodically check your trusted devices and sessions on your Profile & Settings page by scrolling down to Session Management and clicking Manage to ensure you recognize the devices listed.
- Periodically review your users or installers and remove those who no longer need access to their roles and permissions.
- Avoid sharing login credentials to ensure users have appropriate permissions and to maintain accurate activity tracking.