Skip to main content

Authorization

Follow this guide to create a new NetSuite REST API credential that will allow Nexla to authenticate to and exchange data with your NetSuite account.
netsuite_rest_api_auth.png

NetSuite Rest API

Prerequisites

Before creating a NetSuite REST API credential, you need to obtain your OAuth1 credentials from your NetSuite account. NetSuite uses OAuth1 2-legged authentication for all API requests, which requires a Consumer Key, Consumer Secret, Access Token, Access Token Secret, Realm (Account ID), and Account ID.

To obtain your NetSuite OAuth1 credentials, follow these steps:

  1. Sign in to your NetSuite account using your administrator credentials.

  2. Navigate to Setup > Company > Enable Features and ensure that REST Web Services is enabled.

  3. Navigate to Setup > Integration > Manage Integrations > New to create a new integration.

  4. Configure your integration settings:

    • Enter a name for the integration (e.g., "Nexla Integration")
    • Select Token-Based Authentication as the authentication method
    • Review and select the permissions or roles for the integration

  5. Click Save to create the integration.

  6. After the integration is created, you will see the Consumer Key and Consumer Secret. Copy these values immediately.

  7. Navigate to Setup > Users/Roles > Access Tokens > New to create a new access token.

  8. Configure your access token settings:

    • Select the integration you created in step 4
    • Select the user and role for the access token
    • Enter a name for the access token (e.g., "Nexla Access Token")

  9. Click Save to create the access token.

  10. After the access token is created, you will see the Token ID (Access Token) and Token Secret (Access Token Secret). Copy these values immediately, as the Token Secret may not be accessible again after you navigate away from the page.

  11. Identify your Account ID. This is part of your NetSuite REST API domain name and is typically found in your NetSuite URL (e.g., if your URL is https://1234567.suitetalk.api.netsuite.com, your Account ID is 1234567).

  12. Identify your Realm. This is typically the same as your Account ID (Company Identifier).

  13. Store all credentials securely, as you will need them to configure your Nexla credential. The Consumer Secret, Access Token, and Access Token Secret are sensitive information and should be kept confidential.

The OAuth1 credentials are used to sign all API requests to the NetSuite REST API using HMAC-SHA256 signature method. The Account ID is used to construct API endpoint URLs specific to your NetSuite instance (e.g., https://{account_id}.suitetalk.api.netsuite.com/services/rest/record/v1/metadata-catalog/account). The Realm is used as an OAuth1 parameter. If your credentials are compromised, you should immediately revoke them in your NetSuite account settings and generate new ones. For detailed information about OAuth1 authentication, available endpoints, and API access, refer to the NetSuite REST API documentation.

Create a NetSuite REST API Credential

  • To create a new NetSuite REST API credential, after selecting the data source/destination type, click the Add Credential tile to open the Add New Credential overlay.

New Credential Overlay – NetSuite REST API

NetsuiteAPICred.png

Credential Name & Description

  1. Enter a name for the credential in the Credential Name field and a short, meaningful description in the Credential Description field.

    Resource descriptions are recommended but are not required. They should be used provide information about the resource purpose, data freshness, etc. that can help the owner and other users efficiently understand and utilize the resource.

OAuth1 Authentication

NetSuite REST API uses OAuth1 2-legged authentication for all API requests. OAuth1 uses Consumer Key, Consumer Secret, Access Token, Access Token Secret, Realm, and Account ID to sign API requests using HMAC-SHA256 signature method.

  1. Enter your NetSuite Account ID in the Netsuite Account Id field. This is part of your NetSuite REST API domain name and is typically found in your NetSuite URL (e.g., if your URL is https://1234567.suitetalk.api.netsuite.com, your Account ID is 1234567). The Account ID is used to construct API endpoint URLs specific to your NetSuite instance.

  2. Enter your OAuth1 Consumer Key in the OAuth1 Consumer Key field. This is the Consumer Key you obtained from your NetSuite integration settings (Setup > Integration > Manage Integrations). The Consumer Key is used to sign API requests.

  3. Enter your OAuth1 Consumer Secret in the OAuth1 Consumer Secret field. This is the Consumer Secret you obtained from your NetSuite integration settings. The Consumer Secret is used to sign API requests and is sensitive information that must be kept confidential.

  4. Enter your OAuth1 Access Token in the OAuth1 Access Token field. This is the Token ID you obtained from your NetSuite access token settings (Setup > Users/Roles > Access Tokens). The Access Token is used to sign API requests and is sensitive information that must be kept confidential.

  5. Enter your OAuth1 Access Token Secret in the OAuth1 Access Token Secret field. This is the Token Secret you obtained from your NetSuite access token settings. The Access Token Secret is used to sign API requests and is sensitive information that must be kept confidential.

  6. Enter your OAuth1 Realm in the OAuth1 Realm (Account ID/Company Identifier) field. This is typically the same as your Account ID (Company Identifier). The Realm is used as an OAuth1 parameter in API request signing.

    Your NetSuite OAuth1 credentials can be found in your NetSuite account settings. The Consumer Key and Consumer Secret are obtained from your integration settings (Setup > Integration > Manage Integrations). The Access Token and Access Token Secret are obtained from your access token settings (Setup > Users/Roles > Access Tokens). The Account ID is part of your NetSuite REST API domain name, and the Realm is typically the same as your Account ID.

    OAuth1 authentication uses HMAC-SHA256 signature method to sign all API requests. The credentials are used together to authenticate and authorize API requests to your NetSuite account.

    If your credentials are compromised, you should immediately revoke them in your NetSuite account settings and generate new ones. The Consumer Secret, Access Token, and Access Token Secret provide access to your NetSuite account data and should be treated as sensitive information. Keep your credentials secure and do not share them publicly.

    For detailed information about OAuth1 authentication, available endpoints, and API access, see the NetSuite REST API documentation.

Save the Credential

  1. Once all of the relevant steps in the above sections have been completed, click the Save button at the bottom of the overlay to save the configured credential.

  2. The newly added credential will now appear in a tile on the Authenticate screen during data source/destination creation and can be selected for use with a new data source or destination.