NetSuite - Gather API Credentials (Token-based Authentication)

The API (Application Programming Interface) provides automated communication between connected systems.

To gather the credentials for NetSuite Token-based Authentication, follow these required steps in order:

When these steps are complete, you will have gathered the following required credentials:

1: Create an Integration Record

The Integration Record identifies the application in NetSuite’s system. Follow these steps to create the required Integration Record.

1. In NetSuite, go to the Integrations page, or perform a global search for page:integrations.
2. Create an Integration Record if none exists.
3. After you create the record, retain the displayed Consumer Key and Consumer Secret.
4. If the Integration Record already exists, but it doesn't have a Consumer Key and Consumer Secret: edit the Integration Record, then click Reset Credentials, and set them to:
   • Name: Your-Application-Name
   • Authentication: Token-Based Authentication
   • State: Enabled

2: Enable Token-based Authentication

1. In NetSuite, go to Setup > Company > Setup Tasks > Enable Features > SuiteCloud > Manage Authentication.
2. Make sure Token Based Authentication is enabled.
3. Click Save.

3: Create a Token Role

The administrator does not have token permissions by default. If you do not create a token role and assign it to your administrator, you will get a Login access has been disabled for this role error when creating a token.

1. In NetSuite, perform a global search for page:role, then choose New Role.
2. Click Permissions > Setup.
3. Add the following permissions:
   • User Access Token: Full
   • Access Token Management: Full
   • Web Services: Full

4: Add Token Management Permissions

1. In NetSuite, perform a global search for page:employees.
2. Edit your employee record.
3. Go to Access > Roles, and add the token auth role you just created.

5: Create Access Tokens

1. Perform a global search for page:tokens.
2. Click New Access Token.
3. Select the application and role you created earlier, then click Save.
4. Retain the Token ID and Token secret.

You can also view a video guide of the above steps:

6: Account ID

1. In NetSuite Admin, click Setup > Integration > Web Service Preferences.
2. Retain the Account ID displayed under the Account ID heading.

7: Grant full permission to the Token Role

Next, grant FULL permission to the role for Sales Order, Item Fulfillment, and Purchase Order:

1. Go to Setup > Permissions > Transactions.
2. Enter FULL level permissions for Sales Order, Purchase Order, Item Fulfillment, Fulfill Orders and Find Transaction.

8: Gather NetSuite Location ID (optional)

The Location ID is an optional parameter which is only used when Multi-Location Inventory feature is enabled.

There should be a single location to represent inventory in the third-party fulfillment center.

1. From NetSuite Admin, click Setup > Company > Locations.
2. Click View next to the location.
3. Retain the numerical Location ID, displayed under the heading Internal ID.

Next: Enable API Access (Token-based authentication)