Coupa Supplier Portal Registration and Login

Creating an account in the Coupa Supplier Portal is completely free and allows suppliers to interact with buyers all over the world.

As a supplier, there are many ways you can create an account in Coupa. Depending on your particular situation the experience on the portal might vary in order to connect you sooner to the buyers you interact with. The following sections explain the different ways to create an account depending on your particular context.

Methods to register in the CSP

Create an account at supplier.coupahost.com, get an invitation email from your Coupa customer, forward an invitation to a peer, or create an account from a PO email.

You can register for the Coupa Supplier Portal (CSP) through several methods. Depending on the method, your onboarding experience can vary.

The following table provides more detailed information about the benefits and considerations for each method.

Table 1. How to join the CSP
MethodBenefitsConsiderations
Customer-created invitation
  • You get a custom-invitation with specific instructions and a proactive message from your customer.
  • When you accept the invitation and create your account, you are automatically connected/linked to the customer who invited you.
  • You have to wait for your customer to send the invitation email. This means that you might not get invited due to your customer forgetting or not having the time to send the invitations to all their suppliers.
  • The links on the invitation email to the CSP expire after 30 days and are invalidated if the inviter's account is deactivated.
  • If a customer sends an invitation to an inactive supplier user on the CSP, then the invitation will be rejected during processing. To resolve the issue, either:
    1. The customer/buyer has to reach out to the supplier and ask supplier to reactivate their account on CSP. Once the account is activated, the customer has to resend the invite to the supplier.
    2. The customer/buyer can send the invite to another email address for the same supplier.
Self-created registration
  • You can create your account or accounts ahead of time
  • You can add multiple users
  • You can set up your login preferences
  • You can update your profile quickly
  • You need to connect manually to your customers in Coupa. Let your customer know that you registered and you want to connect with them.
  • Customers can connect with you through their Supplier Portal Directory, or by sending an invitation email to any of the CSP supplier users on the account. However, if you are invited using a different email, that email can log in but will have to merge with the account that was set up ahead of time in order for all the supplier users to be on the same account and linked to the customer.
Purchase order (PO) email

  • Your customer does not have to proactively manage invitations and reminders for you to get connected through the CSP.

  • As PO emails are a frequent communication channel between you and your customers, you have more opportunities to create a CSP account and enjoy its benefits.

  • You can create a CSP account without requiring an invitation if you use Supplier Actionable Notifications (SAN), InvoiceSmash, or other PO methods.

  • If you transact with your customers through PO methods other than the CSP and you are not linked to the CSP, your PO notification email has a "Get Connected with the Coupa Supplier Portal" section with a summary of the benefits of joining the CSP and the Get Started button that directs you to the CSP registration page, where your basic information (first name, last name, and email address) is filled in automatically based on the PO email.

  • If you use Supplier Actionable Notifications (SAN), the PO email also has a "Manage PO" button that takes you to the SAN PO page without any immediate actions. The "Create Account" button in the banner at the top of the PO page lets you create a CSP account directly from the PO by taking you to the registration page.

  • If your primary contact information email address is different from your PO email address, and you are connected to the CSP using your primary contact email, that is, your organization is linked to the CSP but you are not a CSP user, in the "Do More with the Coupa Supplier Portal" section of the PO email you can see a list of admin user emails from which you can request an invitation to the CSP so that you can create an account with your PO email address.
  • None
Forwarded invitation from a coworker

  • You can easily invite others within your organization to the CSP by forwarding them your PO email notification or by sending them an invitation.

  • You end up with the right supplier user(s) linked to and transacting electronically through the CSP with less work.

  • If you join the CSP from one of two simultaneous invitations received from your administrator and your customer, you might see a green box with a question asking whether you are an employee of the supplier organization and you need to select either the Yes – Join or No – Create New Account checkbox.
  • You can forward the invitation only to email addresses with the same domain. This ensures more built-in security.

With all methods, you need access to the email address you are going to use for the account.

Your CSP account is based on a specific email address. If you use an email address different from the one your Coupa customers have on file for you, you cannot connect with them until you give them the email address or create a CSP account with that email address.

Register for the CSP through a customer invitation

Ask your customer to send you an invitation to the CSP. The invitation email has two buttons:

  • Join Coupa: On the tab that opens, create and confirm a password.
    1. Accept the Privacy Policy and Terms of Use.
    2. Click Get Started to create an account for the CSP.
  • Forward this invitation:
    1. On the tab that opens, click the Forward this to someone link.
    2. Enter their email and click Forward.

The links on the invitation email to the CSP expire after 30 days and are invalidated if the inviter's account is deactivated.

If a customer sends an invitation to an inactive supplier user on CSP, then the invitation will be rejected during processing. Inactive suppliers are suppliers that are already registered in Coupa but their accounts appear as inactive.

For more information see Manage Users.

If a customer sends an invitation to an inactive supplier user on CSP, then the invitation will be rejected during processing. To resolve the issue, either:

  • The customer has to reach out to the supplier and ask the supplier to reactivate their account on CSP. Once the account is activated, the customer has to resend the invite to the supplier.
  • The customer can send the invite to another email address for the same supplier.
Note:

You can see this feature only if your customer(s) enabled it.

When you join the CSP from a customer-created invitation, you can see a custom registration page. The Create your business account page contains a welcome message and company logo by default. Your customer can customize the welcome message and add their logo, so the message might be different fin each case.

You need to enter your email address and password, and accept the Privacy Policy and the Terms of Use. You can get help to sign up or you can forward the invitation to others by clicking on the relevant links.

Tip:

You can update your information later on the My Account Settings page. For more information, see Manage Your Account.

By default, if this is the first time you or anyone from your company registers in Coupa, this new account is the admin account for your company. Once set up, you can add users and assign them roles, including account administration.

For more information see Manage Users.

If you are already linked to the CSP, you can see a Do More with the Coupa Supplier Portal section with the Login button instead of Get Started.

Register for the CSP through self-created registration

See How to use the Coupa Supplier Portal for the first time.

Create your account in the Coupa Supplier Portal without receiving an invitation

Follow these steps to register in the Coupa Supplier Portal for the first time:

  1. Go to https://supplier.coupahost.com/ .
  2. Select Create an account.
  3. Fill out the form. Red asterisks mark required fields.
    • Tax Registration options vary depending on your selected country. For more information, see Tax Registration.
  4. Select the checkmark to accept the Privacy Policy and Terms of Use.
  5. Select Create an account.
  6. Select your data privacy preference depending on whether you want your business information to be shared with other parties registered in Coupa including potential buyers. Your business information includes:
    • Business name,
    • Company information,
    • Legal entities associated with your business,
    • Contact information,
    • Addresses You can access and edit your business information later. For more information, see Create and Manage Your Business Profile.
  7. Select Save.

Invite others to the CSP

A coworker can invite you to the CSP, and you can invite others to the CSP by:

  • Forwarding them your PO email notification with the Create Account button.
  • Clicking on the Forward This button in your CSP invitation email, or by
  • Sending them an invitation from Setup > Admin > Users > Invite Users page as shown in the screenshot below:
    Figure 1. Invite users to your account
Warning:

You can forward the invitation only to email addresses with the same domain.

An invitation to the CSP is sent to the email address that you specified.

If the user is already linked to the CSP or tries to create an account from an expired invitation, the user is directed to the Register / Login page where a red message bar displays the following: "Your invitation has expired or already been activated."

Warning:

Invitations to the CSP expire after 30 days.

Complete the CSP Onboarding

The CSP onboarding is a series of screens and processes presented to first time users after they have registered and logged in to the CSP for the first time.

The onboarding process in presented to new users once they have registered for the first time. For more information about registering, see How to use the Coupa Supplier Portal for the first time.

Note:

The following steps and screenshots represent the onboarding for a user that has created an account without being invited by a coworker or buyer.

This process is different for every user depending on their registration method, their country, their buyer's preferences and the specific process they want to complete. However, all new accounts require the creation of a legal entity and an associated payment method by filling out some information about you and your company.

If you close the onboarding screen by mistake, you can configure your payment methods, legal entities, an other information in the CSP platform through other ways. For more information see View and Manage Payment Methods Information (Previously Remit-To).

Fill out the fields shown on screen. Some icons appear over the different screens:

  • Red asterisks: mark required fields.

  • Add icon (cross icon): includes additional optional lines in fields like addresses.

  • Information icon: hover over this icon to read a detailed description of the field or section.

You can complement and edit these fields later, except for your country and tax registration information.

Warning:

Once you create your new account, you cannot change your country and tax registration information.

  1. Fill out your primary address. Select the Add button (cross icon) if you require additional address lines.
    This is the main address associated with your business. You cannot change your country and tax registration information after this step.
    Figure 2. Primary Address fields during onboarding
  2. Select the Save and Next button on the bottom-right corner.
    This reveals a new section with new fields depending on your selected country.
  3. Fill out the information about your tax registration.
    This section critical to manage transactions with buyers and several processes in Coupa. You cannot change your country and tax registration information after this step.
    A green banner on the top of the progress bar indicates that the primary address was saved successfully.
    Figure 3. Successful Primary Address registration
  4. Select the Save and Next button on the bottom-right corner.
    This reveals a new section to guide you through creating your first payment methods, depending on your selected country.
  5. Fill the form to configure your first payment method.
    Coupa supports several types of payment methods, including Virtual Cards. You can select the checkmark next to the My company does not accept Virtual Card payments label to continue to another payment method. For more information, see View and Manage Payment Methods Information (Previously Remit-To).
  6. Select Save and Next.
    This advances to the next window to register another payment method.
  7. Enter the information in the form to receive Bank Transfer payments.
    You can select the checkmark next to the My company does not accept Bank Transfer payments label to continue.

If you close the onboarding screen by mistake, you can configure your payment methods, legal entities, an other information in the CSP platform through other ways. For more information see View and Manage Payment Methods Information (Previously Remit-To).

  1. Select Save and Next.
  2. Select if you want to share your business information (Business Profile) with the Coupa Community.
    Selecting this option allows customers to see your business information, participate in open surcing events, and other processes.
    Figure 4. Share your Business Profile with the Coupa Community
  3. Select Save.
    This will close the the onboarding cards and you are redirected to your Business Profile page. You can continue to fill out more information about your business. For more information, see Create and Manage Your Business Profile in the CSP.
    Figure 5. New Business Profile Page in the CSP
  4. Select the notifications icon (bell icon) to be redirected to your Workbench.
    The CSP Workbench provides a centralized view of all requests pending your action, including buyer requests. For more information, see Understand the CSP Workbench.
    Figure 6. Onboarding tasks in the CSP Workbench
  5. The next time you log in, you may me prompted to configure a method of multifactor authentication n for increased security. For more information, see Manage Multifactor Authentication in the CSP.

Next steps after onboarding the CSP

Log into the CSP

See how to log into the Coupa Supplier Portal (CSP) using single or multifactor authentication (MFA).

Login page

When you have an account with the Coupa Supplier Portal (CSP), you can log into your account from the Login page.

  1. Go to supplier.coupahost.com.
  2. Type your email address and select Continue.
  3. On the next page, type your password and click Login.

Once logged in, you see a summary of your recent activity, announcements, and tabs to access to other areas of the CSP.

Multiple active sessions

You cannot have more than three active sessions simultaneously. When you log into another session, you are forced to close an open one. A message notifies you that you have too many active logins and you will be signed out from one of your other sessions if you click Log In. You can also Cancel the attempt to log into another session.

Welcome message

When you log in for the fist time from a new customer-created invitation, you can see a welcome message and company logo, customized by your customer.

Welcome tour

Once you are signed in, Coupa takes you on a welcome tour.

If you log in from a new customer-created invitation, the welcome tour is not shown, but you can access it from the Help menu located at the top-right corner of the page as shown in the screenshot below:

You can skip the tour by clicking on the Skip button or closing the window with the X in the top right corner. Clicking Next takes you to the second page of the tour, which provides you with basic information on the benefits of invoicing through the CSP.

By clicking on the relevant link, you can go directly to view the Orders, Invoices, or Admin pages, or go to the next tour page that provides basic information about how the CSP can help you transact and communicate with your customers, for example, by allowing you to manage your catalogs, orders, and invoices, and setting notification preferences for important customer transactions.

The tour also summarizes the additional features, for example, the possibility to provide supplier information through the CSP, update POs with advance ship notice (ASN), update catalog items, and features for payments, such as, managing payment settings. If you click on the Go to Online Help to Learn More link, you are directed to the Coupa Supplier Portal Admin and User Guide for details on each feature.

Multifactor authentication

When you log in for the first time, you are prompted to enable multifactor authentication. This method often includes receiving a code though a selected channel in order to validate your identity.

For more information, see Manage Multifactor Authentication.

The code is good only for 60 seconds. If you do not type that code on the CSP sign-in page and click Log In within 60 seconds, you have to get a new code and try again.

Troubleshooting

If you're unable to receive the six-digit authentication code or don't have storage for the backup codes:

  1. Download the Supplier Declaration Form.
  2. Fill out the form (this can be done digitally), and save it.
  3. Send an email to supplier@coupa.com, with the filled out form.

Our Coupa Support team will let you know what further actions are required from your side.

Your Information in the CSP

When you first log in to the CSP, you see an onboarding sequence that leads you through entering your company's information. After you complete the onboarding sequence, the CSP populates corresponding fields in your public profile. For more information about the fields you need to complete, see Create and Manage Your Business Profile.

The CSP onboarding flow collects the following information:

  1. Your contact information: Your primary contact's information Primary Adress, and tax registration
  2. Payment Information: information to receive payments. The onboarding flow requires information regarding different types of payment:
    1. Virtual Card payments, including an Email Address. You can mark the "My company does not accept Virtual Card payments." checkbox.
    2. Bank Transfers, including bank account country or region, currency, beneficiary name, number, IBAN, Routing or Bank Code number. You can mark the "My company expects to receive urgent/wire payments" or the "My company does not accept Bank Transfer payments." checkboxes.
    3. Check, including country or region, address and remit-to code. You can mark the "My company does not accept Check payments." checkbox.
  3. Business information: Your tax ID, and DUNS number, and V
  4. Suscriptions: If you want to participate in the Coupa Verified or Coupa Advanced program. For more information, see Coupa Verified Program and Coupa Advanced Program.

Single Sign-On (SSO) Integration in the CSP

Integrate your company’s SSO with the Coupa Supplier Portal for simplified login and access management. To set this up, you’ll need to be an account Admin.

Suppliers subscribed to Coupa Advanced can configure Single Sign-On (SSO) in Coupa to integrate their company’s SSO with the Coupa Supplier Portal (CSP) for secure, streamlined logins, and access management.

To set this up, you’ll need to be an account Admin.

How to set up the SSO integration

Follow these steps:

  1. Download your identity provider’s SAML metadata file.
  2. Log in as a CSP Admin.
  3. Navigate to Admin > Single Sign-On Setup.
  4. Upload the metadata file and click Save. While the metadata file upload is taking place, please wait for it to be completed.
  5. Once the connection is confirmed, all users will log in via your SSO provider - no separate CSP password required.
Note:

During the upload process, you’ll see a green check mark next to the metadata file name with the Entity ID and Primary Certificate information displayed. When the process is complete, the SSO page refreshes with a green banner confirming that your SSO provider is successfully connected. An Active status will show next to the certificate expiration date.

Once connected, your users access their CSP account through the SSO provider. When they sign in to the CSP from the Login page, they provide their email address and then continue the login process through the SSO provider. A separate password for the CSP is no longer required.

Update or remove SSO

As a CSP Admin user, you can update, disable or remove your SSO integration.

  • To update: Remove the existing provider and upload a new SAML file
  • To disable temporarily: Use the Disable button in the SSO Setup Page
  • To remove permanently: Use the Remove button in the SSO Setup Page
Important:

If your SSO certificate expires, all users lose access to the CSP. Admin(s) will receive a reminder in their email before the expiration date: before the certificate expires, remove your SSO provider and reupload your SAML file. Contact supplier@coupa.com for assistance in restoring access.

If SSO is disabled, the user(s) of your CSP account need to reset their passwords. When they go to the CSP Login page, they need to provide their email address and a new password to access the account.

Manage Multifactor Authentication in the CSP

Multifactor authentication (MFA) is the preferred security option to protect accounts. Learn how to enable or disable it when needed, how to sign in using MFA, remember your browser while using this option and track recent activity on your account.

Multifactor authentication (MFA) is the recommended security option to protect accounts. It requires the user to provide two or more verification factors to gain access to the Coupa Supplier Portal (CSP). Some Coupa customers may require suppliers to use MFA to access their data in the CSP.

There are several methods to enable MFA in your account:

  • Enable MFA by using an authenticator app (recommended option)
  • Enable MFA by receiving a text message (SMS)
  • Enable MFA by email
  • Enable MFA using a passkey

The following content guides you through the steps for:

  • Enabling MFA in your account
  • Track recent login activity in your account
  • Sign in to the CSP using MFA
  • Remembering browsers for MFA
  • Disabling MFA for users in your supplier account
  • Frequently asked questions (MFA)

Enabling MFA in your CSP account

To enable any MFA method, follow the steps below:

  1. Go to the Account Settings page. You can reach this page by selecting your profile name on the top-right corner of the window, and selecting the Account Settings option.
  2. Select the Security & Multi Factor Authentication tab on the left navigation bar.
  3. Set your preferred default MFA method by selecting the radio button under their descriptions.
    1. For Payment Changes (Required for Changing Legal Entity or Remit-To): MFA is required when creating or editing legal entities, remit-to, and bank account information.
    2. For Both Account Access (Login) and Payment Changes: MFA is required when logging in to the CSP. You don't have to reauthenticate when working with financial data because you already authenticated when logging in.
  4. Select the MFA method depending on how you want to receive the verification codes:
    1. Option 1: Using an Authenticator App (available from the app store) on your mobile phone to generate a code. This is the recommended option.
    2. Option 2: Using SMS to receive a code sent by text message to your phone number.
    3. Option 3: Using email to receive a code.
    4. Option 4: Using a passkey to sign in.

When you enable MFA, you get an email notification of the change.

Depending on your selected preferred MFA method, you will need to follow additional steps as detailed in the sections below:

Option 1: Enable MFA using an authenticator app

Enabling MFA via an authenticator app is the recommended option. The first time you visit the Security & Multi Factor Authentication page, the system displays a window with instructions to configure this option.

Follow the instructions on the window to configure MFA using an authenticator app:

  1. Visit the the Google Play store or the Apple app store.
  2. Search for an authenticator app. The recommended option is to use Google Authenticator, which is available for iOS and Android devices. See Install Google Authenticator for help with installing the app on your mobile device.
  3. Download and install your preferred authenticator app.
  4. Open the app on your mobile device.
  5. Go to the Account Settings page.
  6. Select the Security & Multi Factor Authentication tab on the left navigation bar.
  7. Scan the QR code shown in the modal with the authenticator app or copy the security key to use it as the CSP authentication code. For most apps, select "Add" or "+" to scan the QR code.
  8. Enter the 6-digit verification code from your device in the input field on the modal. The code that Google Authenticator provides is good only for 30 seconds. If you don't type that code on the CSP sign-in page and click Log In within 30 seconds, you have to get a new code and try again.
  9. Select the Enable button at the bottom right of the modal.
  10. Print your backup codes or email them to yourself before you click OK. If you ever lose your device, you need these to regain access to your CSP account.

Do not uninstall the authenticator app once the MFA set up is done: you will need the same app in future each time you encounter the MFA popup (for example when logging in or making some changes in the platform).

Warning:

Print your backup codes or email them to yourself before you click OK. If you ever lose your device, you need these to regain access to your CSP account.

Option 2: Enable MFA using a text message (SMS)

If you want to receive text message (SMS) notifications or verification codes, you must enter and validate your phone number under My Account > Notification Preferences.

This feature is only available for validated regions.

To enable MFA via text message (SMS), follow the next steps:

  1. Go to the Account Settings page. You can reach this page by selecting your profile name on the top-right corner of the window, and selecting the Account Settings option.
  2. Select the Security & Multi Factor Authentication tab on the left navigation bar.
  3. Click the blue circle next to the Via Text Message option: Follow the instructions that appear on the next screen.
  4. Input the phone number where you want to receive the SMS text. A code is sent to your phone as an SMS text message (SMS rates may apply).
  5. Confirm the Recaptcha shown in the modal and select the Send Code button.
  6. Enter the 6-digit verification code sent to your phone in the field next to the third steps shown on screen.
  7. Select the Enable button at the bottom right of the modal.
  8. Save your backup codes or email them to yourself before you delete the message. If you ever lose your device, you need these to regain access to your CSP account.

After successful validation, you receive the verification code in a text message.

Warning:

Print or save your backup codes or email them to yourself before you delete the message. If you ever lose your device, you need these to regain access to your CSP account.

Option 3: Enable MFA using an email

Email is considered less secure than other MFA factors, so use this option as a last resort. To use MFA though a secondary email:

  • All of your customers need to have activated the Allow suppliers to use Email MFA permission. This change may take up to 24 hours to take effect.
  • If you have several customers and one of them has not activated the option, you need to use MFA through another method.

To enable MFA via email, follow the next steps:

  1. Go to the Account Settings page. You can reach this page by selecting your profile name on the top-right corner of the window, and selecting the Account Settings option.
  2. Select the Security & Multi Factor Authentication tab on the left navigation bar.
  3. Click the blue circle next to the Via Alternative Email option. This option is available only if all of your customers have activated the Allow suppliers to use Email MFA permission.
  4. Follow the instructions that appear on the next screen.
  5. Input the secondary email where you want to receive the security code. This email cannot be the same login email. You need access to this secondary email in order to receive the code and use it in the system.
  6. Confirm the Recaptcha shown in the modal and select the Send Code button.
  7. Enter the 6-digit verification code sent to the email in the field next to the third steps shown on screen.
  8. Select the Enable button at the bottom right of the window.

Option 4: Enable MFA using a passkey

Passkeys are login tools to sign in to an account. The passkey is tied either to a device or browser that only you have access to. You can only use one passkey per user.

To configure MFA using a passkey:

  1. Go to the Account Settings page. You can reach this page by selecting your profile name on the top-right corner of the window, and selecting the Account Settings option.
  2. Select the Security & Multi Factor Authentication tab on the left navigation bar.
  3. Click the blue circle next to the Passkey option: Follow the instructions that appear on the next screen.
  4. Save your backup codes or email them to yourself before you delete the message. If you ever lose your device, you need these to regain access to your CSP account.

If you lose access to the passkey, provide the backup codes to Support, and admins can disable it temporarily.

Track recent login activity in the CSP

At the bottom of the Security & Multi Factor Authentication page, you can also track your login activity.

  1. Go to the Account Settings page. You can reach this page by selecting your profile name on the top-right corner of the window, and selecting the Account Settings option.
  2. Select the Security & Multi Factor Authentication tab on the left navigation bar.
  3. Scroll down to the Recent Login Activity section.

Your logins are listed in reverse chronological order under the Recent Login Activity section with the following information:

  • date (and time)
  • browser
  • device
  • IP address
  • if MFA is enabled, also the authentication type (authenticator app or text message).

By default, the three most recent logins are visible. Use the ...View More link to see up to 20 logins.

Sign in to the CSP using MFA

To sign in to the CSP using MFA, follow these steps:

  1. Go to https://supplier.coupahost.com and provide your credentials as usual. The Multi-Factor Authentication window opens.
  2. Depending on your setting:
    1. Open the authenticator app on your device and choose your CSP account. Get the number that's shown. This application is the same one used for enabling the MFA option.If there are multiple logins set in your authentication, then ensure that the code under Coupa Supplier Portal is entered. or
    2. Open the newly received SMS text message or email that contains the verification code. The message is sent to the phone number or email that is registered under notification preference settings in the account. If no number is registered under Notification Preferences, you will not see the button Send Code To Mobile. or
    3. Access the device you registered the passkey with and follow the instructions on your device.
  3. Type the authentication code in the appropriate field within the screen of the CSP log in.
  4. Click Log In.

The code that Google Authenticator provides is good only for 30 seconds. If you don't type that code on the CSP sign-in page and click Log In within 30 seconds, you have to get a new code and try again.

If you or your user are locked out and don't have the backup validation codes, contact Coupa Support by sending an email from the registered email address, and provide the declaration form.

Remembering browsers for MFA

As a CSP user, you can use the Remember this browser option to avoid having to input your MFA credentials every time you log in.

On login: Select the Remember this browser checkbox when entering your credentials.

Inside the CSP:

  1. Go to the Account Settings page. You can reach this page by selecting your profile name on the top-right corner of the window, and selecting the Account Settings option.
  2. Select the Security & Multi Factor Authentication tab on the left navigation bar.
  3. Select the Remember this browser checkbox

When you log in as a CSP user, you can select the Remember this browser checkbox on the Multi-Factor Authentication page to bypass multi-factor authentication (MFA) on your account for 30 days.

You still need to use MFA at least every 30 days and it is still required for any payment method or legal entity changes.

Disabling MFA for users in your supplier account

Admin users now have the ability to disable MFA for the other users of the same account. If you’re part of a multi-user supplier account, and you're locked out due to MFA, an admin within your account can now disable MFA on your behalf.
If your account has an active admin, reach out to them and ask them to temporarily disable MFA on your user account by following these steps:

Steps for the Admin User:

  1. Log in to your Coupa account
  2. Go to the Setup tab
  3. Navigate to the Users section
  4. Search for the affected user and click Edit User
  5. Scroll down and select Disable MFA
Once MFA is disabled, the locked user will automatically receive an email to reset MFA and set it up again on a new device.
Note:

The reset email is valid for only 24 hours. If no action is taken before that time, the process needs to start from the beginning.

If there are no other admins in your account or if you need further assistance, feel free to contact our support team.

Frequently asked questions about MFA in the CSP

As a supplier, you can face different scenarios that require you to enable MFA. Take these into account when enabling or disabling MFA:

  • If the customer does not have MFA as a requirement for suppliers, when they enable MFA as a requirement, then:
    • Every supplier for that customer is then required to enable MFA in order to access any of that customer's information through the CSP.
    • Suppliers without MFA receive a message that they must enable MFA in order to transact with the customer. The message contains a link directing the supplier to the page where MFA can be enabled. The supplier requires a phone with SMS texting or an authenticator app to enable this option.
    • The customer’s Coupa Admin can set up an exception in the platform to "Exclude" a specific supplier from the MFA requirement in CSP. This supplier will have access to specific information.
  • If a customer requires the supplier MFA and the supplier does not have MFA enabled, then:
    • The supplier can not see customer data and is instructed to turn on MFA in order to see customer data.
    • When the supplier logs into CSP and navigates to see any customer specific information, they receive a message that they must enable MFA in order to transact with their customer. The message contains a link directing the supplier to the Account Settings page > Security & Multi Factor Authentication tab where MFA can be enabled.
  • If a customer requires the supplier MFA and the supplier has disabled or turned off the MFA option (supplier has transaction history with the customer, but no longer does business with them), then:
    • The supplier can log into the CSP normally, however, in order to view past data or access customer-specific information with that particular customer they must enable MFA.

What is multifactor authentication?

Multi-factor authentication (MFA) is an added layer of security which makes it harder for someone else to get into your CSP account, even if they have your password.

If you try to log in from a device that we don’t recognize, for example a computer from which you have never logged in to the CSP before, we ask you to enter a verification code (the second factor) to make sure it is really you. This verification code is generated by your authenticator app or sent in a text message to your mobile phone.

If someone else is trying to log into your account, they won’t get the code, which could stop them from accessing your account.

For more information, see Manage Multi-Factor Authentication.

Why should I use multifactor authentication?

Securing your transactions is Coupa's top priority. The continuous improvements to the CSP help keep your accounts and data safe. Adding MFA to your account increases its security.

MFA is mandatory with sensitive payment accounts to increase the security of your payment settings in Coupa.

How does multifactor authentication work?

MFA increases security beyond simply having a password. Once MFA is turned on, you can use your Coupa password and a verification code every time you need to change your payment account settings. The verification code is the multi-factor authentication piece. Verification codes can be generated from your authenticator app, which is the preferred option, or sent in a text message to your registered mobile phone.

MFA through an authenticator app, for example, Google Authenticator, Twilio Authy, or Microsoft Authenticator Authy, is the preferred method. You can download one of these apps for free from the Apple App Store or Google Play.

SMS (text message) is a secondary method supported by Coupa. However, this method is available for most countries. If it is not available for your country, select a different authentication method or contact your customer for more options.

Is multifactor authentication mandatory?

MFA is mandatory with CSP payment accounts. MFA is not mandatory with the other features of the CSP.

Which payment account updates require multifactor authentication?

Sensitive account updates, namely changes to your legal entity, remit-to, and bank account information require MFA.

Supported countries for suppliers in the CSP

Note:

If a country isn't supported, Smart Onboarding skips financial data during the onboarding flow.

Table 2.
CountryCountry Code
AustraliaAU
BrazilBR
ChinaCN
DenmarkDK
JapanJP
PortugalPT
RussiaRU
SingaporeSG
South AfricaZA
SpainES
SwedenSE

CSP Account, Login and Registration FAQ

Find answers to questions on how to register for and log in to the CSP, and manage your account.

How much does it cost to join the CSP?

Coupa doesn't charge suppliers to use the CSP.

Where do I register for the CSP?

You can request an invitation to join the CSP. Ask your customer to send you an invitation email or visit https://supplier.coupahost.com. For more information, see How to use the Coupa Supplier Portal for the first time.

Why don't I receive the email invitation to join Coupa?

Check your spam/junk email folder.

Emails sometimes get flagged as spam. If you still cannot find the email invitation, you can register instead. However, if you register, make sure to use the same email address to register that your customer used to invite you.

Why can't I register for the CSP?

If you received the email invitation with the link and can't register, check the I'm not a robot field. If there are any other issues, write to supplier@coupa.com.

How do I register if the admin/owner of the CSP account left the company?

Try working internally with your IT department; sometimes they can grant temporary access to the registered email to log in as the administrator that left your company. If this is possible, you can reset your account password from https://supplier.coupahost.com/forgot_password and log in as usual. However, if you can't obtain access to the old email, ask your customer to update the primary email address on their side for you as a supplier, proceed to "unlink" from the old account, and then "relink".

All the transaction data remains. Some basic company information and payment locations/details may need to be updated in the new account, but most of the important information and transaction details are carried over automatically to the new account.

You can also claim admin status after an account has been inactive. For more information, Manage Users in the CSP.

Where do I sign in to the CSP?

http://supplier.coupahost.com

How do I cancel my CSP account?

If you're no longer doing business with the customer who set you up on the CSP, ask the customer to make you inactive in the system.

What do I do if I am locked out of the CSP?

Using two-factor authentication protects you against fraud. For more information, see Enable or Disable Two-Factor Authentication.

If you can't receive the six-digit authentication code or don't have storage for the backup codes, send an email to supplier@coupa.com with the declaration form and we will let you know what further actions are required from your side.

Why don't I get the password reset emails?

Check your spam/junk email folder.

Emails sometimes get flagged as spam. If you still cannot find the email, write to supplier@coupa.com.

Why can't I log in to the CSP?

Make sure you have followed the instructions in Log in to the CSP. If you still have issues, reset your password. If the problem persists, write to supplier@coupa.com.

Why can't I log in after resetting my password?

Check if you are using the correct URL: https://supplier.coupahost.com.

Sometimes users bookmark the password reset URL (instead of the login URL) or bookmark a test site.

What do I do if I am not the admin/owner of my CSP account but I can't log in or don't have full access?

Contact your admin to activate your account or set your permissions.

Some users in the CSP have more power to activate and deactivate users, and decide which customers and types of information they can access (forexample, invoices but not orders or catalogs). Contact those admins to see why your access is not correct and have them fix it. If this is not possible, contact supplier@coupa.com.

Why do I get the "unauthorized or expired account" error?

Your customer has probably deactivated a setting on their end. Contact your customer to find out if this was intentional. ask them to check your supplier record or your supplier user in the system. If they can't solve the problem, they can contact Coupa support.

What do I do if I receive the "We're sorry, but something went wrong" error?

Contact your customer and ask them to open a support ticket because something is wrong on their end with a configuration or an update that they need to resolve with Coupa support.

Tip:

Didn't find what you were looking for? Upgrade to Premium Support today to unlock more support functionality.