Skip to main content
All CollectionsGeneralFAQ
Working with 2FA, Admin, Full Access, and Highly Privileged Roles
Working with 2FA, Admin, Full Access, and Highly Privileged Roles

NetSuite is deprecating Full Access Role & making 2FA mandatory for high privilege roles eff 2019.1. Learn how this affects CloudExtend here

Updated over 3 months ago

To provide an extra level of security, NetSuite releases from 2019.1 onwards require all NetSuite users with highly privileged roles to use two-factor authentication (2FA).  By default, the Administrator and other highly privileged roles are designated as 2FA required, and this requirement cannot be removed. Starting with 2019.1 NetSuite is also deprecating Full Access roles. 

What is a highly privileged role? NetSuite defines highly privileged roles here (login required to view link).

Terms used in this article: 

  • TBA = Token-Based Authentication

  • SSO = Single Sign On

  • 2FA = Two Factor Authentication

CloudExtend Implications

If you are a CloudExtend customer and logging in via a highly privileged role your options will vary depending on the App you are licensing.

ExtendSync Google Users

Users that edit NetSuite records inside the Chrome extension will not be able to do so with an admin role/privileged role that requires 2FA. All other activities such as attaching emails and files will continue without any impact as long as the user remains logged in to their NetSuite session in a separate browser tab/window. 

Affected users should enable TBA or SSO to establish a Web Services connection.

ExtendInsights Excel NetSuite and ExtendSync for Outlook NetSuite Users 

SSO, TBA, and 2FA are supported for both ExtendInsights Excel and ExtendSync Outlook.


Need Support?

If you have questions or need help, use the chat icon at the bottom right to talk to our support team. 

Did this answer your question?