Secure Login Access to Your NetSuite Account
For some companies, it is very important to be able to maintain company branding on all pages of their websites. It is also important to keep NetSuite security policies in mind when building your website.
The security team at NetSuite does not allow the practice of presenting login fields to your NetSuite account in an iFrame on your web page.
Displaying the NetSuite login fields in an iFrame on your site could be interpreted by the end user as a break in the chain of trust. The NetSuite login fields must be presented on the same secure domain as the page displayed after a visitor logs in. The URL for a secure page always starts with https://.
If the secure login pages that the NetSuite application provides in the web store or customer center do not suit your company's needs, please read Displaying Login Fields on Your Web Page. Follow the procedure in this topic to safely display NetSuite login fields on your own HTML page hosted on the NetSuite secure server. This practice has been approved by the security team at NetSuite to provide login access to your NetSuite account on your website.