Set Up OAuth 2.0 Roles
An administrator can create a new role with OAuth 2.0 permissions, or modify existing roles to add OAuth 2.0 permissions, then assign users to these roles as needed. If you need more information about creating or customizing roles, see:
OAuth 2.0 Permissions
The following OAuth 2.0 permissions can be added to roles as appropriate.
-
OAuth 2.0 Authorized Applications Management:
-
Is primarily for the Administrator role, or roles with Core Administration Permissions (CAP). For more information about CAP, see Core Administration Permissions.
-
Requires two-factor authentication (2FA).
-
Enables users to view or revoke any OAuth 2.0 authorized applications in the account. For more information, see Managing OAuth 2.0 Authorized Applications
-
Enables users to set up the OAuth 2.0 client credentials flow in the account. For more information, see OAuth 2.0 Client Credentials Setup.
-
-
Log in using OAuth 2.0 Access Tokens – enables users to:
-
Access REST web services, RESTlets, and SuiteAnalytics Connect using OAuth 2.0 access tokens.
-
View their OAuth 2.0 authorized applications. For more information, see Managing OAuth 2.0 Authorized Applications
-
Revoke OAuth 2.0 authorized applications they authorized previously.
-
To add permissions to a role, go to Setup > Users/Roles > Manage Roles. Select a role to customize. On the Permission tab, Setup subtab, choose the permission from the list and click Add.
A user assigned a role with the OAuth 2.0 Authorized Applications Management permission cannot access RESTlets, REST web services, and SuiteAnalytics Connect using OAuth 2.0. To use OAuth 2.0 for access, the user must be assigned a role with the Log in Using OAuth 2.0 Access Tokens permission.
For more information, see Assign Users to OAuth 2.0 Roles.