As of 2018.2 Release, certain roles now require Two-Factor Authentication to access NetSuite. All Administrator roles, Full Access roles, and highly privileged roles have been affected and companies will now need to update their credentials to provide a second method of authentication when logging in. Although 2FA provides additional security benefits, it can disrupt your integrations with other systems. In order to avoid data loss or sync issues, you may consider upgrading your integration to use Token Based Authentication.
NetSuite’s Token Based Authentication feature was specifically built for integrations as it eliminates the need for RESTlets or web services integrations to store user credentials. TBA requires zero maintenance and can be set up by following a few simple steps in NetSuite*.
First, your Administrator must enable Token Based Authentication in NetSuite.
- Setup > Company > Enable Features
- Under the SuiteCloud subtab, scroll down to the section labeled “Manage Authentications”
- Check the box titled “Token Based Authentication” and agree to the Terms & Conditions
- Save your new preferences
Next, you will set up a new integration using Token Based Authentication
- Navigate to Setup > Integrations > Manage Integrations > New
- Give you integration a Name, mark the State as Enabled, and be sure to check the box that indicates “Token Based Authentication”
- Save the Integration but do not navigate away from this page
You will notice that two keys are generated, along with a security warning. These two codes are the Consumer Key and Consumer Secrete Key, and they are required to successfully set up Token Based Authentication. Copy and save these keys in a secure location and navigate back to your Home screen.
Next, you will generate the Access Tokens
- From your home screen, scroll down to Settings and select “Manage Access Tokens”
- Select My New Access Tokens to create new token keys
- Select your Integration Name from the Application Name drop-down menu
- Select the User, Role and Token Name for your integration
- Save the Access Token but do not navigate away from this page
You will notice that two additional keys are generated, along with a security warning. These two codes are the Token ID Key and Token Secret ID Key, and they are required to successfully set up Token Based Authentication. Copy and save these keys in a secure location.
Finally, you will leave NetSuite and login to your other system. Navigate to the settings for your NetSuite integration and notice if Token Based Authentication is a login option. Pull up the TBA Keys that were generated in NetSuite and paste these into your settings (where you would normally use a User Email and Password) to re-sync the two systems. Your systems are now connected, and you no longer need to worry about 2FA integration issues. Please contact SquareWorks if you have any questions about setting up Token Based Authentication for your company.
*Always check with support services for your integrated system before making any changes.