Enhance your security by enabling SSO login and restricting access to specific IP addresses.
*This feature is available exclusively for Enterprise Plan users.
Settings → Security & Authentication
What is SSO Login?
Single Sign-On (SSO) allows employees to access Realpacking without creating separate IDs and passwords. By integrating with existing corporate accounts (such as Google Workspace, Microsoft Entra ID, or Okta), it enables one-click login for a seamless experience.
Enhanced Security: When an employee leaves the company or their permissions change, managing the central corporate account automatically restricts their access to Realpacking, ensuring secure data management.
Improved Convenience: Employees no longer need to remember multiple passwords, which reduces login friction and boosts overall work efficiency.
We recommend that your internal IT administrator or Identity Provider (IdP) manager follow the steps below to complete the integration.
Enable Realpacking SSO & Verify Redirect URI
Toggle the switch at the top right of the settings screen to change the status to "SSO Login Enabled."
Copy the URL by clicking the copy button to the right of the "Redirect URI" item located at the bottom left of the screen.
Navigate to your IdP’s admin console (e.g., Google, Microsoft, etc.) and register this URI when configuring your application settings.
Enter Integration Details (Manual Configuration)
After completing the app registration in your IdP, enter the issued integration details on the right side of the Realpacking screen. You can choose between "Use Discovery URL" and "Manual Configuration." The required fields for "Manual Configuration" are as follows:
Authorization Endpoint: Enter the URL of the IdP's authentication page.
Token Endpoint: Enter the URL used to issue access tokens.
UserInfo Endpoint: Enter the URL used to retrieve user information.
JWKS URI: Enter the URL for the JSON Web Key Set used for token validation.
Client ID: Enter the Client ID issued by your IdP.
Client Secret: Enter the Client Secret value issued by your IdP.
Scopes: The default values (
openid email profile) will be applied.
Distribute the Company Login URL to Employees
Once all information has been entered and saved, copy the "Company Login URL" located at the top left of the screen.
Share this URL with your employees via internal messengers or groupware. By accessing this specific URL, employees can log in to Realpacking using their corporate integrated accounts (SSO).
The "Allow Access from Specific IPs Only" feature is a security function that restricts access to the Realpacking service to pre-registered, secure networks (e.g., internal corporate networks or designated workstation PCs).
It helps safeguard corporate data by fundamentally blocking unauthorized access from external sources.
CMS Access IPs: Restricts access to the Web Admin page, where administrators manage settings and review history.
Recording Program Access IPs: Restricts logins to the actual video recording software (Recorder) used on-site.
OpenAPI Access IPs : Restricts requests sent to the Realpacking API server.
Enable Global Feature
Click the "Allow access only from specific IPs" main switch at the top right of the settings screen to activate it (ON).
Select Specific Areas and Register IPs
Turn on the switch next to the area you wish to restrict (CMS, Recording Program, or OpenAPI) to open the configuration popup.
Direct IP Entry: Enter the allowed IP addresses in the text input field. When registering multiple IPs, you can separate them using commas (,), semicolons (;), or spaces.
Range Entry (CIDR): To allow an entire IP range, use CIDR notation (e.g.,
192.168.1.0/24) to register a broad range at once.Quick Add Current IP: Click the "+ Add Current IP" button at the top right to automatically populate the field with the administrator's current IP address. This is highly useful for preventing the administrator from being accidentally locked out while configuring the settings.
Save Settings
After entering the IP addresses, click the "Allow access only from specific IPs" button at the bottom to save your configuration.
Note: You must register at least one allowed IP address for the settings to be saved successfully.
Include Owner Administrator Setting: In the CMS Allowed IP section, there is an "Include Owner Administrator" checkbox.
Unchecked (Default): The Owner Administrator, who holds the highest authority, will not be affected by IP restrictions and can access the system from any location. (This ensures emergency access.)
Checked: The Owner Administrator will also be subject to IP restrictions. Access may be blocked if the IP address changes or if they are not on a registered network, so please use this setting with caution.
Static IP Recommended: For the networks you register as allowed IPs, it is highly recommended to use a Static IP (a fixed IP address that does not change) to ensure stable access.