Scenario
Using the HMAC-SHA1 signature method for Token-based Authentication (TBA) integrations is no longer considered best practice. To help you prepare for the end of support in the future, you can temporarily disable the HMAC-SHA1 signature method for TBA in your production account.
Solution
Disabling HMAC-SHA1 temporarily lets you test your TBA integrations to verify that they are not using the HMAC SHA1 signature method. To complete the following procedure, you must be logged in to NetSuite with an Administrator role or in another role that has the Enable Features permission.
-
Go to Setup > Company > Enable Features.
-
Click the SuiteCloud tab, and scroll down to the Manage Authentication section.
-
Check the Disable HMAC-SHA1 for Token-based Authentication box.
-
Click Save.
To re-enable HMAC-SHA1 for TBA, clear the Disable HMAC-SHA1 for Token-based Authentication box, and click Save.