All Collections
Authentication
Netsuite - Token-Based Authentication
Netsuite - Token-Based Authentication
Setting up Netsuite User Roles to get Access Tokens for Merge Link.
Kevin Zhang avatar
Written by Kevin Zhang
Updated over a week ago

Step One: Finding your NetSuite Account ID

1.) Log into your NetSuite portal.

2.) Copy the subdomain of the URL at the top of your browser and enter it within Merge Link.

  • Your NetSuite Account ID is the combination of letters or numbers before "app.netsuite.com"

  • For example, if your URL is "https://7600508.app.netsuite.com/app/center/card.nl?sc=-29&whence=", the value to input within Merge Link is 7600508


Step Two: Enable Web Services

If you have not yet enabled REST and SOAP Web Services:

1.) In your Netsuite account, go to Setup > Company > Enable Features.

  • You must be an Administrator of your Netsuite account to see this option.

2.) Under SuiteCloud, check the boxes next to SOAP WEB SERVICES and REST WEB SERVICES.


Step Three: Setup a Role with All Transactions and Setup Permissions

**If you know that you already have a user role with access to all transactions (all setup permissions below must be selected with a full access), you can skip these steps. To check, go to Setup, Users/Roles, Manage Roles, and search through your user roles.

1.) In your Netsuite account, go to Setup > Users/Roles > Manage Roles, and click the New option.

  • You must be an Administrator of your Netsuite account to see this option.

2.) If you have a Multi Subsidiary NetSuite application, ensure the Role has access to All Subsidiaries and has the Allow Cross-Subsidiary Record Viewing box checked.

3.) Add each of the below permissions to the Role:

  • In Transactions, add each of the below permissions:

TRANSACTIONS PERMISSION

LEVEL

Access Payment Audit Log

Full

Audit Trail

Full

Automated Cash Application

Full

Bill Purchase Orders

Full

Bills

Full

Calculate Time

Full

Cash Sale

Full

Cash Sale Refund

Full

Check

Full

Credit Card

Full

Credit Card Refund

Full

Credit Memo

Full

Credit Returns

Full

Customer Deposit

Full

Customer Payment

Full

Customer Refund

Full

Deposit

Full

Deposit Application

Full

Edit Forecast

Full

Enter Opening Balances

Full

Enter Vendor Credits

Full

Estimate

Full

Expense Report

Full

Finance Charge

Full

Find Transaction

Full

Fulfill Orders

Full

Generate Price Lists

Full

Generate Statements

Full

Import Online Banking File

Full

Invoice

Full

Invoice Approval

Full

Invoice Sales Orders

Full

Item Fulfillment

Full

Item Receipt

Full

Make Journal Entry

Full

Matching Rules for Online Banking

Full

Opportunity

Full

Pay Bills

Full

Pay Sales Tax

Full

Post Vendor Bill Variances

Full

Posting Period on Transactions

Full

Purchase Order

Full

Receive Order

Full

Receive Returns

Full

Reconcile

Edit

Refund Returns

Full

Return Auth. Approval

Full

Return Authorization

Full

Sales Order

Full

Sales Order Approval

Full

Set Up Budgets

Full

Statement Charge

Full

System Journal

Full

Timer

Full

Track Time

Full

Transfer Funds

Full

Vendor Bill Approval

Full

Vendor Payment Approval

Full

Vendor Return Auth. Approval

Full

Vendor Return Authorization

Full

Vendor Returns

Full

View Gateway Asynchronous Notifications

Full

View Payment Events

Full

  • In Setup, add each of the below permissions:

SETUP PERMISSIONS

LEVEL

Accounting Lists

Full

Accounting Management

Full

Deleted Records

Full

Log in using Access Tokens

Full

Mobile Device Access

Full

Other Lists

Full

REST Web Services

Full

SOAP Web Services

Full

  • In Lists, add each of the below permissions:

LISTS PERMISSIONS

LEVEL

Accounts

Full

Classes

Full

Companies

Full

Contacts

Full

Currency

Full

Customers

Full

Departments

Full

Items

Full

Subsidiaries

Full

Tax Records

Full

Vendors

Full

  • In Reports, add each of the below permissions:

REPORTS PERMISSIONS

LEVEL

SuiteAnalytics Workbook

Edit

4.) Save the Role.


Step Four: Assign User to Token-based Authentication Role

1.) Navigate to Setup > Users/Roles > Manage Users.

2.) In Manage Users, either select a user to assign the Role to or create a new user.

  • To create a new user, go to Lists > Employees > Employees > New. Create the user and grant them NetSuite access by going to the Access tab in the Employee record and select 'Give Access'.

3.) In the user's employee record, click Edit and go to the Access tab. In your Access tab, go to Roles and select the Role you just created with all the correct transactions and setup permissions.

4.) Click Save to apply these changes.


Step Five: Create an integration to obtain your Consumer Key and Secret

1.) Once the user and the role are set up, navigate to Setup > Integration > Manage Integrations > New.

2.) Create the integration. Select the boxes selected below.

  • NOTE:

    • Ideally, the CONCURRENCY LIMIT should be set to null. If a value must be specified, the minimum value set should be 3. If neither is an option, the highest possible concurrency limit should be used.

    • Ensure the REST WEB SERVICES box is checked under SCOPE

    • Fill in the TBA AUTHORIZATION FLOW and REDIRECT URI with a value of https://app.merge.dev/oauth/callback

3.) Once the integration is saved, you will receive a Consumer Key and Consumer Secret (at the bottom of the confirmation screen). This will only be shown once, so keep them in a secure place!


Step Six: Creating an Access Token to Obtain your Token ID and Secret.

1.) In your Setup tab, go to Users/Roles, Access Tokens, and create a New one.

2.) Create a New Access Token.

  • The Application Name should be the name of the Integration created in the prior step.

  • The User should be the User the Role was added to in the prior steps.

  • The User Role should be the Role created/used in the prior steps.

3.) Copy these credentials and store them in a safe place. They will only be shown once!


Step Seven: Paste your Netsuite Consumer Key and Secret, and Token ID and Secret in Merge Link.

  1. CONSUMER_KEY: Confirmation screen after creating the integration (Step Five)

  2. CONSUMER_SECRET: Confirmation screen after creating the integration (Step Five)

  3. TOKEN_ID: From confirmation screen after creating your Access Token (Step Six)

  4. TOKEN_SECRET: From confirmation screen after creating your Access Token (Step Six)

Did this answer your question?