NetSuite Authorization

Last synced 6 months ago by Wout De Geyter

Authorizing NetSuite

Generating a token for your Netsuite account is not an easy task, especially if PieSync is the first token-based integration you've set up. There is documentation out there to help you with this, but it isn't always so straightforward. The main reference is the internal NetSuite documentation which you can find here, but we are happy to provide you a more detailed overview ourselves.

In any case the most important thing to know is that you need a user with an administrator role to take most of the below steps (as access to the 'Setup' is needed).

  1. Make sure Enable Token Based Authentication is enabled for your NetSuite account.
    Go to Setup > Company > Enable Features > Suite Cloud > Manage Authentication and enable Token-Based Authentication.

  1. Make sure your user role allows for API access.
    For this you need to know what role you want to use. There are 2 options for this:
    1. Use the predefined 'Full Access' role.
      This is the easiest solution and will work fine, but it might not be ideal from security perspective. Even more, this role has been marked as deprecated by NetSuite recently as mentioned in this article.
    2. [Recommended] Create a new custom role that will be used for the PieSync integration.
      This can be done by going to Setup > Users/Roles > Manage Roles > New.
      Assign the required permissions to this role in the Permissions tab. The following permissions are the minimum for our integration (all requiring the 'Full' permission level):
      - In the "Setup" sub-tab:
      • Access Token Management
      • User Access Tokens
      • Web Services
      • Customer Status
      • Custom Body Fields
      • Custom Column Fields
      • Custom Entity Fields
      • Custom Event Fields
      • Custom Fields
      • Custom Item Fields
      • Custom Item Number Fields
      • Custom Lists
      • Custom Record Types
      • Custom Transaction Fields
      • Other Custom Fields
      - In the "Lists" subtab:
      • Contacts
      • Customers
      • Subsidiaries
      Be sure to click on Save after assigning these permissions.
  2. Assign the role to the NetSuite user.
    Go to Lists > Employees > Employees > Search. Once you've located the user of your choice, you can Edit that one and then add the role under Access > Roles. Be sure to click on Save.

  1. Obtain your NetSuite Account ID. This is to be populated in the PieSync auth popup.
    Go to Setup > Integration > Web Services Preferences.
  2. Obtain your Consumer Key and Consumer Secret.
    There are 2 options for this:
    1. Use the Consumer Key and Secret from an earlier integration.
      This should work just fine, but might not be the best option from security perspective as it is a good practice to separate different integrations for tracking purposes.
    2. Create a new Consumer Key and Secret.
      Go to Setup > Integration > Manage Integrations > New. Make sure that the "Token-Based Authentication" checkbox is enabled as shown on the below screenshot.
      IMPORTANT: The Consumer Key and Secret are only displayed once, so be sure to copy them locally!
  3. Obtain your Access Token ID and Access Token Secret.
    Again, there are 2 options for this, similar to the options for the Consumer Key and Secret.
    1. Use the Token ID and Secret from an earlier integration.
      This should work just fine, but might not be the best option from security perspective as it is a good practice to separate different integrations for tracking purposes.
    2. Create a new Access Token ID and Secret.
      Go to Setup > Users/Roles > Access Tokens > New. Here you'll be able to select the applicable Application, User and Role.
      IMPORTANT: Here again, the Token ID and Secret are only displayed once, so be sure to copy them locally!


How did we do?


Powered by HelpDocs