Passwords and Two-Factor Authentication in NetSuite 2026.1
Explore password management and two-factor authentication (2FA) updates in NetSuite 2026.1 to enhance account security.
TL;DR Opening
Starting in NetSuite 2026.1, updates to password management and two-factor authentication (2FA) enhance account security and user experience. This includes better access procedures, password policies, and 2FA setups, making it crucial for users to understand these enhancements.
What's New in Password Management and 2FA
In the latest release, NetSuite has simplified password-related tasks and clarified the 2FA setup process:
Changing Your Password
You can change your NetSuite password via the Settings portlet on your dashboard. Here’s how:
- Click the Home button.
- Scroll to the Settings portlet (usually on the left).
- Click the Change Password link and follow the on-screen instructions.
Important: Ensure you're logged in with a role that has permission to change the password.
Troubleshooting the Settings Portlet
If you cannot find the Settings portlet:
- Check if you are logged in with a role that has the necessary permissions.
- If it’s still missing, contact your Administrator.
Forgetting Your Password
If you forget your password, click the Forgot your password? link on the login page. This option requires that you have either 2FA setup or security questions configured. If these options are not set, you must reach out to your Administrator for help.
Password Policies
By default, accounts are set to require a Strong password policy. Administrators can modify these policies, but some critical roles must always comply with stringent criteria. It’s good practice to regularly assess the complexity of your passwords to adhere to best security practices.
Setting Up Two-Factor Authentication (2FA)
If any of your roles are marked as 2FA-required, you will be prompted to configure it during your first login. You may skip the setup up to five times; however, it's advisable to complete this immediately for enhanced security. To set up 2FA:
- Have a device with an authenticator app (like Google Authenticator).
- Follow the setup prompts when logging in.
Supported Authenticator Apps
You can use any OATH TOTP compliant authenticator app, such as:
- Google Authenticator
- OKTA Verify
- Oracle Mobile Authenticator
Backup Codes for 2FA
Backup codes are essential for recovering access if you lose your authenticator device. Store these codes in a safe place, as they can be generated anew if lost.
You should use these codes when you cannot access your authenticator app, particularly if you've changed devices or lost your phone.
Who This Affects
- Administrators: Need to manage user password policies and assist users in password management.
- End Users: Must understand how to manage their passwords and enable 2FA for accounts.
- Security Administrators: Responsible for overseeing security settings and compliance with policies.
Key Takeaways
- Users can easily change their passwords through the Settings portlet.
- Two-Factor Authentication (2FA) enhances security and is required for certain roles.
- Backup codes are crucial for 2FA recovery and should be securely stored.
- Strong password policies help maintain account integrity and security.
Frequently Asked Questions (4)
What role permissions are required to change a password in NetSuite 2026.1?
How does NetSuite 2026.1 handle a situation where users cannot find the Settings portlet?
What happens if you forget your password and don't have 2FA or security questions set up in NetSuite 2026.1?
Can backup codes for 2FA be generated again if they are lost?
Weekly Update History (1)
Added a new FAQ: Passwords and 2FA article. This topic will be further updated with new content in the future.
View Oracle DocsWas this article helpful?