Skip to main content

OAuth 2.0 for NetSuite

This section describes the steps to configure Alteryx Analytics Cloud (AAC) to integrate with your NetSuite deployment using OAuth 2.0 to authenticate.

Create OAuth 2.0 Client App in NetSuite

Follow these steps to create an OAuth 2.0 client app in Netsuite...

  1. Sign in to your NetSuite account using the credentials which have access to Administrator role.

  2. Change your role to Administrator.

  3. Navigate to Setup > Integration > Manage Integrations > New.

  4. Enter these details as required...

    1. Name: Name of the OAuth 2.0 Client.

    2. State: Set as Enabled.

    3. Description: (Optional) Description of the client.

    4. OAuth 2.0:

      1. Authorization Code Grant: Set this value to true.

      2. Rest Web Services: Set this value to true.

      3. Redirect URI: Enter this callback URL:

        https://us1.alteryxcloud.com/oauth2/callback

  5. After entering the details, click Save.

  6. Copy the Consumer Key or Client ID and Consumer Secret or Client Secret.

Enable Features and Permissions

You must enable these features and permissions in NetSuite account for the OAuth process to work successfully:

SuiteCloud tab:

  1. Go to Setup > Company > Enable features > SuiteCloud tab.

  2. Enable these features...

    a. Select SuiteScript > Client SuiteScript & Server SuiteScript.

    b. Select SuiteTalk > Rest Web Services.

    c. Select Manage Authentication > OAuth 2.0.

Analytics tab:

  1. Navigate to Setup > Company > Enable features > Analytics tab.

  2. Select SuiteAnalytics Workbook > SuiteAnalytics Workbook.

Permissions

  1. Enable permissions for your role : Setup > Users/Roles > Manage roles > <Name of your role> > Edit.

  2. Enable these permissions...

    1. Select Permissions > Reports >Add SuiteAnalytics Workbook (Edit).

    2. Select Permissions > Setup > Add Custom Fields(View), Custom Record Types(View), Log in using OAuth 2.0 Access Tokens(Full), OAuth 2.0 Authorize Applications Management(Full) and REST Web Services(Full).

  3. Verify that your role which has all of the above permissions enabled is set as the default role.

For more information, go to https://cdn.cdata.com/help/DNG/jdbc/pg_permissions.htm.

Create OAuth 2.0 Client for NetSuite

After you create the NetSuite connected app, you must create an OAuth 2.0 client in AAC, which is used to integrate with the OAuth 2.0 connected app that you created above.

Note

You must create 1 OAuth 2.0 client in AAC for each NetSuite connected app that you want to use.

Steps:

  1. Sign in to AAC as a Workspace Administrator.

  2. Select Profile menu > Workspave Admin > OAuth2.0 Clients.

  3. On the OAuth2.0 Clients page, select Register OAuth2.0 Client.

  4. Specify the new client. Apply these values:

    Setting

    Description

    Type

    Set to NetSuite.

    Name

    Display name for the OAuth 2.0 client in AAC.

    Client ID

    Set this value to the Client ID created above.

    Client Secret

    Set this value to the Client Secret value created above.

    Authorization URL

    Set this value to the following:

    https://<ACCOUNT_ID>.app.netsuite.com/app/login/oauth2/authorize.nl

    Token URL

    Set this value to the following:

     https://<ACCOUNT_ID>.suitetalk.api.netsuite.com/services/rest/auth/oauth2/v1/token

    Scopes

    Set to rest_webservices.

    Access Token Expires In

    Set this value to 3600000.

    Refresh Token Expires In

    Set this value to 604800000.

  5. To save your OAuth 2.0 client, select Create.

For more information, go to Create OAuth2 Client.

Token-based Authentication for NetSuite

This section outlines the process for configuring Alteryx Analytics Cloud (AAC) to integrate with your NetSuite deployment using token-based authentication.

Enable Integration Features

  1. Sign in to Oracle NetSuite as an Administrator.

  2. Navigate to Setup > Company > Enable Features.

  3. Under the SuiteCloud tab, enable the following features:

    • SOAP Web Services,

    • Token-Based Authentication,

    • REST Web Services.

Create an Integration Record

  1. Go to Setup > Integration > Manage Integrations > New.

  2. Fill in the required fields:

    • Name: Provide a meaningful name for the integration.

    • Authentication: Select Token-Based Authentication and TBA: Authorization Flow.

    • State: Set the state to Enabled.

  3. Save the record. This will generate the Consumer Key and Consumer Secret. Be sure to copy these values as they will only be shown once. The Consumer Key serves as the Client ID, and the Consumer Secret acts as the Client Secret.

Create a Role for the Integration User

  1. Navigate to Setup > Users/Roles > Manage Roles > New.

  2. Provide a descriptive name for the role.

  3. Under Subsidiary Restrictions, select All.

  4. Set the Center Type to Classic Center.

Assign TBA Permissions

  1. In the Permissions tab, assign the necessary permissions according to the TBA Permissions Guide.

  2. Save the role.

Assign the Role to Users

  1. Navigate to Setup > Users/Roles > Manage Users.

  2. Select the user you wish to assign the role to, then go to the Access tab.

  3. In the Roles subtab, add the new TBA role.

  4. Save the user record.

After assigning the role:

  1. Log in as the user with the TBA-enabled role.

  2. Verify by testing the creation of an access token under Setup > Users/Roles > Access Tokens.

Generate Access Tokens for TBA

  1. Go to Setup > Users/Roles > Access Tokens > New.

  2. Select the Integration Application, User, and Role with TBA.

  3. Save the record. The Token ID and Token Secret will be displayed. Copy them securely.

Use the Tokens in Your Application

Use the Consumer Key, Consumer Secret, Token ID, and Token Secret to establish a connection via Token-Based Authentication (TBA).

Note

If you encounter permission issues while previewing or importing a dataset, verify that the required permissions are assigned to the TBA role. Navigate to Setup > Record Catalog, search for the table, and select Overview to review the permissions. If the necessary permission is not included in the role, ensure you add it.

Create NetSuite Connection

After you creat the 2 OAuth 2.0 client references, you can create a connection to your NetSuite data.

Note

You must create a separate connection for each OAuth 2.0 client that is available in AAC.

For more information, go to NetSuite Connections.