Setting General Password Preferences

Users with the Administrator role can set up general password preferences for the account at Setup > Company > General Preferences.

Note:

Any changes you make to general preferences are saved in system notes. For more information, see Searching System Notes.

For many preferences you set at the company level, users can override this preference at Home > Set Preferences. If you don't want users to override particular preferences, on the Overriding Preferences subtab, clear the Allow Override box for each preference.

Preference	Description
Password Policy	NetSuite has three built-in password policies for password validation. These policies set the requirements for password length and content: Strong: minimum length of 10 characters, at least 3 of these four character types - uppercase letters, lowercase letters, numbers, special characters Medium: minimum length of 8 characters, at least 2 of these four character types - uppercase letters, lowercase letters, numbers, special characters Weak (You shouldn't choose this): minimum length of 6 characters Note: The password policy sets the minimum for the Minimum Password Length field. It doesn't affect the Password Expiration in Days value. All NetSuite accounts use the Strong policy by default. For more information, see NetSuite Password Requirements.
Minimum Password Length	Minimum Password Length is the minimum number of characters required for user passwords. The default for this field is set by the password policy. Since the default policy is Strong, the default length is 10 characters. You can make the minimum password length value longer than the minimum required by the policy, but you can't make it shorter. If anyone in your account has the View Unencrypted Credit Cards permission, you must use the Strong policy and can't change it. Note: Users with the View Unencrypted Credit Cards permission have a special 12 character Minimum Password Length requirement. For new users logging in with the Customer Center role, and for website shoppers, the password require at least 6 characters. For more information, see NetSuite Password Requirements.
Password Expiration in Days	Enter the number of days that users can log in to NetSuite before they're prompted to change their password. Note: As of 2015, valid values are 1-365. Values entered before 2015 aren't affected by this limit. However, if you change anything on the General Preferences page, only values in this range are accepted. For new accounts, the default is 180 days. Days are counted from when each user last changed their password, not when the company preference changed. Users can see the dates of the previous password change and current password expiration in the My login audit portal. Important: Set a value for Password Expiration in Days to make sure the Password Policy applies to existing users. Employees with the View Unencrypted Credit Card permission have to change their passwords at least every 90 days, unless you set a lower value here. You can check the Require Password Change on Next Login box on employee records. To update many employee records at one time, you can use CSV import. Note: The Password Expiration in Days value doesn't apply to passwords for Customer Center users. For more information, see NetSuite Password Requirements.

Preference

Description

Password Policy

NetSuite has three built-in password policies for password validation. These policies set the requirements for password length and content:

Strong: minimum length of 10 characters, at least 3 of these four character types - uppercase letters, lowercase letters, numbers, special characters
Medium: minimum length of 8 characters, at least 2 of these four character types - uppercase letters, lowercase letters, numbers, special characters
Weak (You shouldn't choose this): minimum length of 6 characters

Note:

The password policy sets the minimum for the Minimum Password Length field. It doesn't affect the Password Expiration in Days value.

All NetSuite accounts use the Strong policy by default. For more information, see NetSuite Password Requirements.

Minimum Password Length

Minimum Password Length is the minimum number of characters required for user passwords. The default for this field is set by the password policy. Since the default policy is Strong, the default length is 10 characters.

You can make the minimum password length value longer than the minimum required by the policy, but you can't make it shorter.

If anyone in your account has the View Unencrypted Credit Cards permission, you must use the Strong policy and can't change it.

Note:

Users with the View Unencrypted Credit Cards permission have a special 12 character Minimum Password Length requirement.

For new users logging in with the Customer Center role, and for website shoppers, the password require at least 6 characters.

For more information, see NetSuite Password Requirements.

Password Expiration in Days

Enter the number of days that users can log in to NetSuite before they're prompted to change their password.

Note:

As of 2015, valid values are 1-365. Values entered before 2015 aren't affected by this limit. However, if you change anything on the General Preferences page, only values in this range are accepted. For new accounts, the default is 180 days.

Days are counted from when each user last changed their password, not when the company preference changed. Users can see the dates of the previous password change and current password expiration in the My login audit portal.

Important:

Set a value for Password Expiration in Days to make sure the Password Policy applies to existing users.

Employees with the View Unencrypted Credit Card permission have to change their passwords at least every 90 days, unless you set a lower value here.
You can check the Require Password Change on Next Login box on employee records. To update many employee records at one time, you can use CSV import.

Note:

The Password Expiration in Days value doesn't apply to passwords for Customer Center users.

For more information, see NetSuite Password Requirements.

Related Topics