1. Additional Resources
  2. Frequently Asked Questions
  3. FAQ: Passwords and 2FA

FAQ: Passwords and 2FA

See the questions and answers below for more information about passwords and two-factor authentication (2FA) in NetSuite.

How do I change my password?

You can change your password using the Setting portlet on your dashboard.

Anywhere in your NetSuite account, click the Home button. Scroll down, your Settings portlet should be located on the left side. Click the Change Password link and follow the instructions.

For more information, see Change Password Link.

What do I do if I don't see my Settings portlet?

If you can't locate the Settings portlet on your dashboard, contact your Administrator. The Settings portlet should be a part of any dashboard, as it's a crucial portlet for managing your NetSuite account.

For more information, see Finding Your Settings Portlet.

What if I forgot my password?

You can reset your password by clicking the Forgot your password? link on the login page. However, this only works if you have 2FA or security questions set up, and you can use them to authenticate yourself. If you can't use any of these methods to authentication, you must contact your Administrator to help you reset the password.

For more information, see Getting Access When You Forget Your Password.

What password policies NetSuite offers?

By default, NetSuite accounts are set to have a Strong password policy. The Administrator can change the policy for the account. There are certain highly-privileged roles that are required to have the Strong policy at all times.

For more information, see Creating a Strong Password.

How do I set up 2FA for myself?

You must set up 2FA if any one of your roles is marked as 2FA-required.

You're prompted to set up your 2FA the first time you log in with any 2FA-required role. You can skip this setup up to five times, but the best practice is to set up 2FA as soon as possible, to keep your account secured.

To set up 2FA, you'll need a device with an authenticator app installed on it. When prompted with the 2FA setup, follow the instructions.

For more information, see Complete Your 2FA Setup.

What authenticator apps can I use for 2FA?

You can use any authenticator app that complies with the OATH TOTP standard. Examples of such are Google Authenticator, OKTA Verify, or Oracle Mobile Authenticator.

For more information, see Supported Authenticator Apps.

What do I need the 2FA backup codes for?

The backup codes for 2FA are useful in multiple cases. You can use them any time instead of your authenticator app, for example, when you don't have your phone with you. The most important case is when you loose your phone, or change the app. If you get past the step when you can use the old app to generate an authorization code, you can use the backup code instead. If you don't have backup codes and need to authenticate with 2FA contact your administrator to reset your 2FA.

You can also generate a new set of backup codes, if you lost them or used them. It is best practice to keep your backup codes handy.

For more information, see Backup Codes for Two-Factor Authentication (2FA).

General Notices