Using NetSuite’s Token Based Authentication

Here’s a guide to getting setup with token based authentication. 

  1. Create a Integration Record

The integration record identifies the application in NetSuite’s system.

  1. Visit the integrations page or global search for page:integrations

  2. Create a integration record if none exists. After you create the record you will need to copy/paste the consumer key and consumer secret to your secrets file.Name: Your-Application-NameAuthentication: Token-Based AuthenticationState: Enabled

  3. If the integration record already exists, but you don’t have the consumer key and consumer secret, edit the record, then press “Reset Credentials”.

2. Enable Token Based Authentication

  1. Setup > Company > Setup Tasks > Enable Features > SuiteCloud > Manage Authentication

  2. Make sure “Token Based Authentication” is enabled

  3. Save

If this feature is not enabled, you will not see the permissions required in the next step.

3. Create a Token Role

Strangely enough, the administrator does not have token permissions by default. If you do not create a token role and assign it to your administrator, you will get a “Login access has been disabled for this role.” error when creating a token.

  1. Global search for page:role, then choose “New Role”

  2. Navigate to “Permissions > Setup” and add the following permissions:User Access Token: FullAccess Token Management: FullWeb Services: Full

4. Add Token Management Permissions

  1. Global search for page:employees

  2. Edit your employee record

  3. Navigate to “Access > Roles” and add the token auth role you just created

5. Create Access Tokens

  1. Global search for page: tokens

  2. New Access Token

  3. Select the application and role we created earlier, then press save.

  4. Copy/past the token ID and token secret to your secrets file.s

6. Configure Your Client

Here’s how to setup the netsuite ruby client with token based authentication:

NetSuite.configure do

  account          ENV['NETSUITE_ACCOUNT']
  consumer_key     ENV['NETSUITE_CONSUMER_KEY']
  consumer_secret  ENV['NETSUITE_CONSUMER_SECRET']
  token_id         ENV['NETSUITE_TOKEN_ID']
  token_secret     ENV['NETSUITE_TOKEN_SECRET']

Did this answer your question?