OAuth is a protocol that allows Natero to access resources of your Salesforce website without having to expose your user credentials. Instead of supplying a username and password, OAuth allows you to authorize the Natero application to access your Salesforce accounts and contacts via the Salesforce API.
NetSuite’s OAuth is very different from the standard oauth flow.
Here’s a guide to getting setup with token based authentication. Note that you must be using a SuiteTalk API versions greater than 2015.2.
1. Create a Integration Record
The integration record identifies the application in NetSuite’s system.
- Visit the integrations page or global search for page:integrations
- Create a integration record if none exists. After you create the record you will need to copy/paste the consumer key and consumer secret to your secrets file.
- Name: Your-Application-Name
- Authentication: Token-Based Authentication
- State: Enabled
- If the integration record already exists, but you don’t have the consumer key and consumer secret, edit the record, then press “Reset Credentials”.
2. Enable Token Based Authentication
- Setup > Company > Setup Tasks > Enable Features > SuiteCloud > Manage Authentication
- Make sure “Token Based Authentication” is enabled
- If this feature is not enabled, you will not see the permissions required in the next step.
3. Create a Token Role
The administrator does not have token permissions by default. If you do not create a token role and assign it to your administrator, you will get a “Login access has been disabled for this role.” error when creating a token.
- Global search for page:role, then choose “New Role”
- Navigate to “Permissions > Setup” and add the following permissions:
- User Access Token: Full
- Access Token Management: Full
- Web Services: Full
4. Add Token Management Permissions
- Global search for page:employees
- Edit your employee record
- Navigate to “Access > Roles” and add the token auth role you just created
5. Create Access Tokens
- Global search for page: tokens
- New Access Token
- Select the application and role we created earlier, then press save.
- Copy/past the token ID and token secret to your secrets files.
6. Provide Natero Credentials
- Go to "IT Administration" under "Settings".
- Go to "Manage Credentials".
- Add Source name as Netsuite 'Account'.
- Add Consumer key to Client ID/Username
- Add Consumer secret to API Key/Password
- Add TokenId, Token Secret in Other section as comma(,) separated values
The fields listed above are as follows:
- account 'NETSUITE_ACCOUNT'
- consumer_key 'NETSUITE_CONSUMER_KEY'
- consumer_secret 'NETSUITE_CONSUMER_SECRET'
- token_id 'NETSUITE_TOKEN_ID'
- token_secret 'NETSUITE_TOKEN_SECRET'