# NetSuite

## Overview <a href="#overview" id="overview"></a>

The NetSuite integration connects data from your NetSuite account to your Sola workspace, making it easy to search and find answers to your specific use cases.

With the NetSuite integration, you can:

* Gain full visibility into user accounts, roles, and permission assignments.
* Monitor access tokens, identify over-privileged configurations, and detect stale or unused tokens.
* Track login activity and detect anomalous access patterns.
* Support least privilege enforcement and security compliance monitoring.

{% hint style="warning" %}
**Your data can only be retrieved, never modified.**

Once connected, your data is securely stored, and access is restricted to retrieving configurations and metadata only. Authentication methods ensure secure delegation of permissions while maintaining data integrity.
{% endhint %}

## Set up NetSuite data source integration with Sola <a href="#set-up-wiz-data-source-integration-with-sola" id="set-up-wiz-data-source-integration-with-sola"></a>

{% columns %}
{% column width="75%" %}
Go to ***Integrations*** > [***Data Sources***](https://app.sola.security/integrations/data-sources) > click ***New data source*** > select ***NetSuite***.

*The Sola wizard will take you through the steps.*
{% endcolumn %}

{% column width="25%" %} <a href="https://app.sola.security/integrations/data-sources?integration=netsuite" class="button primary">Set up NetSuite -></a>
{% endcolumn %}
{% endcolumns %}

To connect NetSuite, you'll need a NetSuite account with **Administrator** access.

{% tabs %}
{% tab title="Token-Based Authentication (TBA)" %}
This method uses NetSuite's Token-Based Authentication to securely grant Sola read-only access to your NetSuite data.
{% endtab %}
{% endtabs %}

*Follow the* [*step-by-step guide below*](#how-do-i-set-up-a-netsuite-data-source-using-token-based-authentication) *to complete the setup.*

<details>

<summary><strong>How do I set up a NetSuite data source using Token-Based Authentication?</strong></summary>

Complete the following steps to set up and configure your NetSuite account and connect it to Sola.

{% hint style="info" %}
Setup requires creating an integration record, configuring a role and permissions, assigning a user, and generating an access token in your NetSuite account. Follow the guided steps in this wizard to connect.
{% endhint %}

#### 1. Get your Account ID

* Log in to your NetSuite account and go to ***Setup*** > ***Company*** > ***Company Information***, and copy your **Account ID**.
* You can also find it in your NetSuite URL: https\://\<account\_id>.app.netsuite.com
* Paste the **Account ID** into the Sola wizard.

#### **2. Enable required features**

* Go to ***Setup*** > ***Company*** > ***Enable Features*** and select the **SuiteCloud** tab.
* Under **Manage Authentication**, enable **Token-Based Authentication**.
* Under **SuiteTalk (Web Services)**, enable **REST Web Services**.
* Save the changes.

#### **3. Create an integration record**

* Go to ***Setup*** > ***Integration*** > ***Manage Integrations*** > ***New***.
* In the **Name** field, enter a name for the integration (e.g. sola-api-integration).
* Make sure **State** is set to Enabled.
* Under **Authentication**, enable **Token-Based Authentication** only.
* Save the changes.
* Copy your **Consumer Key** and **Consumer Secret**.\
  \&#xNAN;***Important***: *These values are shown only once and cannot be retrieved later.*
* Paste the **Consumer Key** and **Consumer Secret** into the Sola wizard.

#### **4. Create a role with the required permissions**

* Go to **Setup > Users/Roles > Manage Roles > New**.
* In the **Name** field, enter a name for the role (we recommend `Sola API Role`).
* Under **Subsidiary Restrictions**, select **All**.
* In the **Permissions** tab, manually add the following permissions:
  * **Reports** - SuiteAnalytics Workbook
  * **Lists** - Employee Record (View), Employees (View)
  * **Setup** - Access Token Management, Bulk Manage Roles, Integration Application, REST Web Services, User Access Tokens, View Login Audit Trail
* Save the role.

#### **5. Assign the role to a user**

* Go to ***Setup*** > ***Users/Roles*** > ***Manage Users***.
* Select an existing user or create a new one. We recommend using a dedicated account such as `integrations@{your company domain}`.
* In the **Name** column, click the name of the user you want to give access to the **Sola API Role**.
* Click **Edit** under the user's name.
* At the bottom of the page, click the **Access** tab.
* Select the **Sola API Role** you created in Step 4 from the roles dropdown.
* Save the changes.

{% hint style="info" %}
If you need to create a new integration user:

* Go to ***Lists*** > ***Employees*** > ***Employees*** > ***New***.
* Enter a name (e.g. Integration User) and a unique email address.
* Select the appropriate Subsidiary (e.g. top-level parent subsidiary).&#x20;
* In the Access subtab, check the Give Access box.&#x20;
* Assign the Sola API Role you created in Step 4.&#x20;
* Set a temporary password, and optionally check Require Password Change on Next Login (for API-only users with tokens, this is less relevant).
* Click Save.
  {% endhint %}

#### **6. Create an access token**

* Go to ***Setup*** > ***Users/Roles*** > ***Access Tokens*** > ***New***.
* Select the **Application Name** you created in Step 3 (e.g. `sola-api-integration`).
* In the User section, select the User you assigned in Step 5.
* Select the Role you created in Step 4 (Sola API Role).
* In the Token Name field, enter a name for the token (we recommend Sola Integration Token).
* Save the changes.
* Copy the **Token ID** and **Token Secret**.\
  \&#xNAN;***Important***: *These values are shown only once and cannot be retrieved later.*
* Paste the **Token ID** and **Token Secret** into the Sola wizard.
* Click **Test Connection** in the Sola wizard.

</details>