NetSuite - Gather API Credentials

The API (Application Programming Interface) provides automated communication between connected systems.


To gather the credentials for NetSuite Token-based Authentication, follow these steps:

1: Create a new Integration

An Integration record identifies the application in NetSuite’s system.

  1. In NetSuite, go to Setup > Integrations *> Manage Integrations, or search for page:manage integrations.
  2. Click New.
  3. Enter a Name, for example "Dropstream".
  4. Under Authorization:
    • Under Token-based Authentication:
      • Make sure Token-based Authentication is enabled.
      • Disable TBA: Authorization Flow.
    • Under OAuth 2.0:
      • Disable Authorization Code Grant.
      • Enable Client Credentials (Machine to Machine) Grant.
      • Enable REST Web Services.
  5. Click Save.
  6. At the bottom of the page, retain the Consumer Key and Consumer Secret. (These are only shown once. If you need to regenerate them, you can Edit the existing Integration and Reset Credentials.)

2: Enable Web Service features

  1. In NetSuite, go to Setup > Company > Enable Features.
  2. Click SuiteCloud
  3. Under SuiteTalk (Web Services):
    • Enable SOAP Web Services.
    • Enable REST Web Services.
  4. Under Manage Authentication:
    • Enable SuiteSignOn.
    • Enable Token Based Authentication.
    • Enable OAuth 2.0.
  5. Click Save.

3: Create Token Role and set permissions

  1. In NetSuite, go to Setup > Users/Roles > Manage Roles > New Role.
  2. Enter a Name, for example "Dropstream Token Role".
  3. Click Permissions.
  4. Add the following permissions at the given access level.
    • Transactions:
      • Find Transaction (Full)
      • Fulfill Orders (Full)
      • Item Fulfillment (Full)
      • Sales Order (Full)
    • Reports:
      • SuiteAnalytics Workbook (Edit)
    • Lists:
      • Accounts (Full)
      • Customers (Full)
      • Items (Full)
      • Locations (Full)
      • Perform Search (Full)
    • Setup:
      • Access Token Management (Full)
      • REST Web Services (Full)
      • SOAP Web Services (Full)
      • User Access Tokens (Full)
  5. If you will use Purchase Orders integration, also add these permissions:
    • Transactions:
      • Item Receipt (Full)
      • Purchase Order (Full)
  6. If you will use Inventory Adjustments integration:
    • Transactions:
      • Adjust Inventory (Full)
  7. Click Save.

Note: Inventory Adjustment integration is disabled by default. To enable Inventory Sync, email

4: Assign Token Role to an Employee

  1. In NetSuite, go to Lists > Employees.
  2. Locate the name of the Employee account that will be associated with all API transactions (the API user). Edit the Employee.
  3. Click Access.
  4. Under Roles, use the dropdown to select the name of the Token Role you created in step 3.
  5. Click Add, then Save.

5: Generate Access Token

  1. Go to Setup > Users/Roles > Access Tokens.
  2. Click New Access Token.
  3. For Application Name, select the Integration name from step 2.
  4. Click Save.
  5. Retain the Token ID and Token secret.

6: Gather Account ID

  • In NetSuite, go to Setup > Integration > SOAP Web Service Preferences.
  • Retain the value under Account ID.

Review credentials

When the above configuration steps are complete, confirm that you have gathered the required credentials:

Next: Enable API Access

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request



Please sign in to leave a comment.