NetSuite Changelog
SecuritySuiteCommerceSecurityRelease NotesNew Feature

Enable Token-Based Authentication for SuiteCommerce

Token-based authentication is now mandatory in SuiteCommerce solutions to enhance security and comply with Two-Factor Authentication policies.

·2 min read·14 views·View Oracle Docs

Token-based authentication has become a requirement in SuiteCommerce solutions to ensure compliance with Two-Factor Authentication (2FA) policies. This update, introduced in a recent NetSuite release, mandates that all developer tools, including the extension, theme, and SuiteCommerce Advanced command-line tools, utilize token-based authentication instead of traditional NetSuite user credentials.

Why Token-Based Authentication Matters

Token-based authentication improves security by ensuring that sensitive actions within SuiteCommerce are validated through secure tokens rather than reusable credentials. This approach helps protect accounts, especially for NetSuite administrators and other privileged roles.

Preparing for Token-Based Authentication

To migrate your SuiteCommerce Advanced (SCA) implementation to use token-based authentication, you'll need to follow specific patch instructions tailored for your version of SCA. Here are the major steps:

Patch Instructions by SCA Version

  • For SCA Aconcagua, 2018.2, 2019.1, 2019.2, 2020.1, and 2020.2:

    • Follow the specific instructions here to enable token-based authentication.

  • For SCA Montblanc, Vinson, Elbrus, and Kilimanjaro:

    • Refer to the guide here to ensure compatibility.

  • For SCA Denali:

    • Check the instructions for Denali here.

Important Notes

Key Steps for Implementation

To implement token-based authentication effectively:

  1. Modify the index.js file to incorporate the necessary changes for Gulp deployments.
  2. Adjust other relevant files as specified in your patch instructions, such as tool.js and communication.js.
  3. Run NPM commands to integrate the new settings and dependencies, ensuring everything is correctly configured.

Following these steps will help secure your SuiteCommerce environment and align it with best practices in authentication.

Source: This article is based on Oracle's official NetSuite documentation.

Frequently Asked Questions (4)

What developer tools require token-based authentication in NetSuite 2026.1?
Developer tools such as SuiteCommerce Advanced command-line tools, extensions, and themes now require token-based authentication.
How can I enable token-based authentication in my NetSuite account?
To enable token-based authentication, you need to ensure that the feature is activated in your NetSuite account. Refer to the API documentation for detailed guidance on how to enable this feature.
What file modifications are necessary for implementing token-based authentication in SuiteCommerce Advanced?
Key files that need modification include 'index.js' for Gulp Deployments, 'tool.js' in the NPM Repository, and 'getDataCenterUrls.tpl', among other JavaScript and configuration files.
What should developers do after modifying files for token-based authentication?
After applying all necessary file modifications, developers should run tests to confirm the functionality of the token-based authentication setup.

Weekly Update History (1)

SuiteCommerce Solutions (SC, SCA, SCMA)updated

Updated Enable Token-Based Authentication to reference the latest SOAP library version.

View Oracle Docs
Source: Enable Token-Based Authentication Oracle NetSuite Help Center. This article was generated from official Oracle documentation and enriched with additional context and best practices.

Was this article helpful?