Requirements for Using OAuth 2.0 for Connect
To get started with OAuth 2.0 for Connect, complete these setup tasks:
-
Enabled Features – The OAuth 2.0 feature must be enabled. For more information, see Enable the OAuth 2.0 Feature.
-
Roles and Permissions – You must have assigned a user to a role that meets the following conditions:
-
Access requirements for accessing the NetSuite2.com data source. OAuth 2.0 is supported for the NetSuite2.com data source only.
Note:When you use SuiteAnalytics Connect with OAuth 2.0, the NetSuite2.com data source is accessible for the Administrator role. However, the Data Warehouse Integrator (DWI) role and custom roles are the preferred option when transferring data to a data warehouse. For more information about the access to NetSuite2.com, see Role and Permission Considerations for NetSuite2.com.
-
Permission to login by using OAuth 2.0. For more information, see Set Up OAuth 2.0 Roles.
-
Permission to access SuiteAnalytics Connect. For more information, see Providing Users with SuiteAnalytics Connect Permissions.
-
-
User – You must have assigned a role that has the Log in Using OAuth 2.0 Access Tokens permission. For more information, see Assign Users to OAuth 2.0 Roles.
-
Integration Record – An integration record for the application must exist at Setup > Integration > Manage Integrations. On the OAuth 2.0 subtab of your integration record, check the SuiteAnalytics Connect box. Then, do the following depending on the flow that you want to use:
-
Authorization Code Grant – Application developers and integrators can use a redirection-based authorization code grant flow with OAuth 2.0. Check this box if you want to implement the OAuth 2.0 authorization code grant flow for this integration.
-
Client Credentials (Machine to Machine) Grant – The client credentials flow is machine-to-machine and doesn't require any user interaction. Check this box if you want to implement the OAuth 2.0 client credentials flow for this integration.
Note:You can check both the Authorization Code Grant box and the Client Credentials (Machine to Machine) Grant box.
After you've created the integration record, ensure that you take note of the Consumer Key (client ID), Consumer Secret (client secret), and application ID that appear on the confirmation page.
For more information about how to create or edit an integration record, and about the authorization code grant and the client credentials flows, see Create Integration Records for Applications to Use OAuth 2.0.
-
-
Certificate – Upload the public key of the certificate that you want to use with NetSuite. For more information, see OAuth 2.0 Client Credentials Setup.
Note:This step is required for the OAuth 2.0 client credentials flow only.
To get the authentication string and include the required OAuth2Token attribute for both flows, see the following: