Logging In Using Two-Factor Authentication (2FA)


Authenticator apps for generating 2FA verification codes are supported in all NetSuite accounts. Users should select an authenticator app as the primary method of authentication. SMS and voice call are subject to carrier availability and changes in local regulations. Therefore, delivery of verification codes by SMS or voice call is not as reliable as using an authenticator app. See Supported Authenticator Apps.

Requiring a second factor for authentication is a method of improving security. Your administrator can assign you a 2FA authentication required role. You will receive an email the first time you attempt to log in to your 2FA role. The email contains instructions and a verification code for your initial login to that role. You can use an authenticator app or your phone to generate the verification codes necessary during login. As long as your session remains valid, you will not be asked again for a verification code when you switch between roles, even when you switch between roles in different companies.

If you are assigned a role that requires 2FA authentication, you must set up an authenticator application or a phone number in NetSuite.


You must complete the initial 2FA setup in the NetSuite UI on your computer. You can log in using 2FA with the NetSuite Mobile application. However, it is not possible to perform the initial 2FA setup from the mobile app.

For more information about setting up 2FA in NetSuite, see:


If you lose your phone, buy a new phone, change your phone number, change your authenticator app, or change your verification code delivery method, you must reset (clear) your 2FA settings in NetSuite. See Reset Your 2FA Settings. After resetting, you must start the 2FA setup process from the beginning.

To log in with a role that requires 2FA, you must first enter your email address and password on the NetSuite login page, and click Log In. After that step is successful, you are prompted for a verification code. For more information about using 2FA in NetSuite, see:

General Notices