Logging In Using Two-Factor Authentication (2FA)
As of March 1, 2023, users setting up or resetting their 2FA configurations must install and use an authenticator app to generate verification codes. Receiving codes by SMS will no longer be supported for users setting up 2FA for the first time, or for existing users who reset their 2FA settings. Users can also log in with the one-time backup codes provided during 2FA setup.
The SMS option is currently only prohibited for new 2FA setups. However, industry experts (such as NIST, W3C, and the FIDO Alliance) no longer view SMS as a secure delivery mechanism for 2FA verification codes. As part of our ongoing commitment to world-class security, the SMS option is targeted for removal in a future NetSuite release.
For more information, see:
Requiring a second factor for authentication is a method of improving security. Your administrator can assign you a role that requires 2FA authentication. You will receive an email the first time you attempt to log in to your 2FA role. The email contains instructions and a verification code for your initial login to that role. The next time you log into a 2FA require role, you will be prompted to set up your 2A preferences in NetSuite. You should use an authenticator app to generate the verification codes necessary during login. While your session remains valid, you will not be asked again for a verification code when you switch between roles, even when you switch between roles in different companies.
If you are assigned a role that requires 2FA authentication, you must set up an authenticator application or a phone number in NetSuite.
You must complete the initial 2FA setup in the NetSuite UI on your computer. You can log in using 2FA with the NetSuite Mobile application. However, it is not possible to perform the initial 2FA setup from the mobile app.
For more information about setting up 2FA in NetSuite, see:
If you lose your phone, buy a new phone, change your phone number, change your authenticator app, or change your verification code delivery method, you must reset (clear) your 2FA settings in NetSuite. See Reset Your 2FA Settings. After resetting, you will start the 2FA setup process again.
To log in with a role that requires 2FA, you must first enter your email address and password on the NetSuite login page, and click Log In. After that step is successful, you are prompted for a verification code. For more information about using 2FA in NetSuite, see: