Netsuite ERP - Token Auth


  • Access Token (string)
    • Generated in the UI. See below for additional information.
  • Token Secret (password)
    • Generated in the UI. See below for additional information.
  • Consumer Key (string)
    • Generated in the UI. See below for additional information.
  • Consumer Secret (password)
    • Generated in the UI. See below for additional information.
  • Account (string)
    • This value can be found in the Netsuite UI under Setup -> Integration -> Web Service Preferences.
  • API Version (option)
    • Choose between the latest version, or a previous version of the API.
  • Environment (option)
    • You can choose between “Production” and “Sandbox” for this option, as well as additional options in the case of data centers that use different URLs.


Netsuite requires some configuration in order to use the Token-Based authentication for integration purposes. Following these steps will generate all of the necessary information required to authenticate with the Netsuite Token Auth connector.

  1. Create Integration Record
    • Visit the integrations page or global search for page:integrations.
    • Create an integration record if none exists. After you create the record, you will need to copy/paste the consumer key and consumer secret.
  2. Enable Token Based Authentication
    • Go to Setup > Company > Enable Features.
    • Click the SuiteCloud subtab.
    • Scroll down to the SuiteScript section, and check the following boxes:
      • Client SuiteScript.
      • Server SuiteScript. Click “I Agree” on the SuiteCloud Terms of Service page.
    • Scroll down to the Manage Authentication section, and check the Token-based Authentication box. Click “I Agree” on the SuiteCloud Terms of Service page
    • Click Save.
  3. Create Token Role
    • Navigate to “New Role” - Setup > Users/Roles > Manage Roles > New (or search for page:role, then choose “New Role”).
    • Navigate to Permissions > Setup and add the following permissions:
      • User Access Token: Full
      • Access Token Management: Full
      • Web Services: Full
      • Log in Using Access Tokens: Full
      • User Access Tokens: Full
      • Enable Features: Full
    • Note: You will likely need to add additional permissions here to enable additional capabilities. For example, Lists: Accounts, Transactions: Opportunity, etc. These permissions allow you to create / read / update / delete specific record types. If you do not have the necessary permissions for a desired action, Netsuite will return an error indicating which permissions are required for the operation.
  4. Add Token Management Permissions
    • Navigate to the list of employees: List > Employees > Employees (or search for page:employees).
    • Edit your employee record.
    • Navigate to Access > Roles and add the token auth role you just created.
  5. Create Access Token
    • Navigate to Setup > Users/Roles > Access Tokens (or search for page: tokens).
    • Click new Access Token.
    • Select the application and role we created in step 3, then press save.
    • Save your new Access Token and Secret.

Additional documentation:

NOTE: The Netsuite connector makes use of the internal IDs of Netsuite records. While we return the internal ID of records when you use the cards in our connector, you may sometimes want to find these IDs within the Netsuite UI. To make these easier to find, there is a user setting that you can enable by checking the box found in Home -> Set Preferences -> Show Internal IDs.