Two-Factor Authentication Requirements Setup in NetSuite

Two-Factor Authentication (2FA) elevates security for logging into NetSuite by requiring users to provide not only their login credentials but also a verification code. This process helps deter unauthorized access to sensitive data.

What Settings Are Required for Two-Factor Authentication?

To implement two-factor authentication for a role, the following settings must be configured:

• Two-Factor Authentication Required: Select the type of authentication needed.
• Duration of Trusted Device: Specify the timeframe before a trusted device will require a new two-factor authentication request.

For more detailed information about two-factor authentication, please refer to the help topics related to Two-Factor Authentication (2FA).

Who Should Use Two-Factor Authentication?

Certain roles within NetSuite that possess highly privileged permissions necessitate the use of two-factor authentication. Notably, new users may be prompted to set up security questions, but users logged under a role requiring 2FA will not have to answer these questions routinely. Instead, they will only need to address security questions if they forget their passwords.

Benefits of Two-Factor Authentication

• Enhanced Security: By requiring a verification code in addition to the user's password, it significantly enhances security.
• App Compatibility: It supports various authenticator apps compliant with OATH TOTP, allowing flexibility in how verification codes are obtained.

Note: Two-factor authentication is not compatible with web services or SuiteAnalytics Connect.

For more in-depth guidance on creating roles and customizing security, please see the Customizing or Creating NetSuite Roles documentation.

Key Takeaways

• Two-factor authentication enhances the security of user logins in NetSuite.
• Configurable settings include the type of authentication and trusted device duration.
• Certain high-permission roles must adhere to 2FA protocols for added security.