Browser-Based Authentication Standard Process and Fallback Mode
When you use browser-based authentication, SuiteCloud SDK creates the credentials file (credentials_browser_based.p12) and encrypts it with an auto-generated passkey. The passkey is stored in your machine's secure storage and is updated regularly when the token expires.
When you do operations that require NetSuite authentication, SuiteCloud SDK retrieves the passkey from secure storage and uses it to decrypt the credentials file. For this reason, ensure that secure storage is accessible and properly configured on your machine if you want to use browser-based authentication.
If secure storage isn't available, you can define a fallback passkey by creating the SUITECLOUD_FALLBACK_PASSKEY environment variable. This passkey must contain 32 to 100 alphanumeric characters. For information about how to set environment variables for different operating systems, see Setting Up Environment Variables for SuiteCloud SDK Tools.
The fallback passkey is a temporary solution for when secure storage isn't available, is locked, or isn't properly configured. If you can't use secure storage, you can keep using the fallback passkey for browser-based authentication.
In this case, changing the passkey is your responsibility, and it should be done regularly for optimal security. Note that when you change the passkey, the current credentials file will no longer work. After changing the passkey, you must delete the old credentials file and set up your account again.
When secure storage is available in your machine, ensure to remove the fallback passkey environment variable. Otherwise, you'll get an error.