2FA in the NetSuite Application
Two-factor authentication (2FA) is available for all companies using NetSuite in all their NetSuite accounts as a method of improving security. 2FA can help you to comply with IT security standards and regulations, using phones your users already have. 2FA is not tied to a single company in NetSuite. If the user’s session remains valid, the user will not be asked again for a verification code when they switch between roles, even when switching between roles in various companies.
Authenticator apps for generating 2FA verification codes are supported in all NetSuite accounts.
As of March 1, 2024, the support ended for 2FA by SMS/voice call.
If you still use SMS/voice call to receive your 2FA code, reset your 2FA settings as soon as possible.
To use 2FA, administrators (or users with the permission Two-Factor Authentication base) must designate specific roles as 2FA required roles. See Designate Two-Factor Authentication Roles for more information.
After a role has been designated as 2FA required, a user assigned to that role receives an email the first time they attempt to login to the 2FA role. The email contains instructions and a verification code for initial login.
After completing the initial login to a 2FA role, a wizard opens with the complete 2FA setup options.
For help written for users, see Logging In Using Two-Factor Authentication (2FA).