System Admin

How to change your NetSuite password

How administrators can set password preferences and how users can reset their own password.

Introduction

Your password is the first line of defence for your NetSuite account. With sensitive data and critical business information stored in the system, ensuring strong and secure access credentials is essential. If you're new to NetSuite or it's time to update your password, this guide will walk you through the process step by step. We’ll also cover tips for creating a strong password, how administrators can set password parameters, and how to troubleshoot common issues.

Why updating your password matters

Cybersecurity threats are on the rise, and weak or outdated passwords make accounts more vulnerable to attacks. Updating your password regularly and making it strong ensures your data remains safe from unauthorised access. It’s a simple yet important step to protect yourself and your business.

Now, let's get started with the steps you need to take to change your NetSuite password.

Step by step guide to changing your NetSuite password

Follow these easy steps to update your password in NetSuite:

Step 1: Log in to your NetSuite account

  • Open your browser and log in to your NetSuite account using your current email address and password

Step 2: Find the Settings portlet

  • Once you're logged in, scroll down on the Home Dashboard until you can see the Settings portlet
  • This is usually at the bottom of the lefthand dashboard column but might be elsewhere if you have personalised your dashboard

Step 3: Look for the “Change Password” option

  • Within the settings portlet, you will find the Change Password link. Click on it

Step 4: Enter your current password

  • To verify your identity, you’ll need to enter your current password first

Step 5: Create and confirm a new password

  • Type in your new password and confirm it by entering the same password again in the provided fields
  • Make sure your password meets NetSuite's security requirements. For example, it may need to include a mix of uppercase and lowercase letters, numbers, and special characters (e.g., @, #, or £)

Step 6: Save changes

  • Click the Save button to confirm your new password
  • A success message will appear, indicating that your password has been updated

Step 7: Log out and log back in

  • For security purposes, log out of your NetSuite account and then log back in using your new password to ensure it works properly

You have now successfully updated your NetSuite password. Important: You will now use your new password to login to any NetSuite instance which is registered against the same email address.

Tips for creating a strong password

Here are some tips to create a secure password:

  • Use a mix of characters Combine uppercase letters, lowercase letters, numbers, and special characters
  • Avoid predictable phrases Do not use "password123," your name, or easily guessed personal information
  • Make it at least 12 characters long Longer passwords are more difficult to crack
  • Use passphrases Consider creating a phrase like “W!nter20Sun&Fun” for easier recall while maintaining strength
  • Update it regularly Change your password every 60 to 90 days

By following these best practices, you can significantly reduce the risk of unauthorised access.

Common issues when changing your password (and how to solve them)

Sometimes you may run into a hiccup while resetting your password. Here are a few common issues and their solutions:

  1. Forgot your current password?
    • If you don’t remember your current password, click the “Forgot Password?” link on the login page. Follow the instructions sent to your email to reset it
  2. Password does not meet security requirements
    • If your new password gets rejected, review the requirements carefully. Ensure you’ve included enough character variety and length
  3. Email link doesn’t work for resetting password
    • If the “Forgot Password” link email doesn’t arrive in your inbox, check your spam folder or contact your NetSuite administrator for assistance
  4. Account locked
    • Too many failed login attempts can lock your account temporarily. Wait a few minutes before trying again, or contact your administrator to unlock it

How administrators can set password parameters in NetSuite

System administrators play a critical role in enforcing strong password policies within NetSuite. Here’s how admins can configure password parameters to align with their organisation’s security practices:

Step 1: Navigate to the password policy settings

  • Log in to your NetSuite account as an administrator
  • Go to the Setup menu, hover over Company, and then click on General Preferences

Step 2: Configure password requirements

  • Scroll down to the section starting with Password Policy in the lefthand column
  • Here, you’ll find settings to configure parameters such as:
    • Password Policy Select the policy which best suits your organisations requirements:
      • Strong A minimum password length of 10 characters and at least 3 of these four character types: uppercase letters, lowercase letters, numbers, non-alphanumeric ASCII characters
      • Medium A minimum password length of 8 characters and at least 2 of these four character types: uppercase letters, lowercase letters, numbers, non-alphanumeric ASCII characters
      • Weak (not recommended) A minimum password length of 6 characters
    • Minimum Password Length Set the minimum number of characters a password should have, e.g. 12 characters
    • Password Expiration in Days Set the number of days a password can remain active before users are required to change it
    • User Registration Link Expiration in Hours Set the number of hours a new user activation link remains active before it expires
    • Idle Session Timeout in Minutes Set the number of minutes an inactive user session will remain open before the user is automatically logged out

Step 3: Save and apply changes

  • After adjusting the settings, click Save to enforce the new password policies across the system
  • Notify users in advance about these changes to avoid confusion or interruptions

Step 4: Enable two-factor authentication (optional)

  • For added security, administrators can require users to enable two-factor authentication (2FA). This can be done under Setup > Users/Roles > Two-Factor Authentication Roles
  • Define whether 2FA should be mandatory for all users or roles and set the number of days a device remains trusted per role

Step 5: Monitor compliance

  • Regularly review user compliance with the password policies by generating security reports under Reports > System Logs. This ensures policies are being followed correctly

By setting and enforcing robust password parameters, administrators can significantly reduce potential vulnerabilities and enhance the overall security of their NetSuite environment.