Developer Tool Roles and Permissions...

TL;DR Opening

Your role and its associated permissions are critical when utilizing the Commerce developer tools in NetSuite. Users must have appropriate roles to fetch and deploy files securely, particularly under the mandatory two-factor authentication (2FA) requirements.

What Are Developer Tool Roles?

In NetSuite, the roles determine what actions users can perform within the Commerce developer tools. Key aspects include:

Fetching and Deploying Files: Users must have a role with the permission to both fetch from and deploy files to NetSuite.
Mandatory 2FA: Since NetSuite 2018.2, all accounts are required to use two-factor authentication. This enhances security by requiring token-based authentication for fetch and deploy operations.

Setting Up Permissions

To operate with the Commerce developer tools:

Ensure you have a role with permissions to fetch and deploy files.
The default roles that provide these permissions include the Administrator and SCDeployer roles.
If custom roles are needed, NetSuite administrators can create them with the appropriate permissions.

Creating a Custom Role

To create a role suitable for developer tasks:

Navigate to Setup > Users/Roles > Manage Roles > New.

Fill out the Role record, ensuring to assign appropriate permissions under the Permission tab, such as:

Field Name	Type	Description
Lists	Full	Access to all list records
Documents and Files	Full	Upload capabilities for files
SuiteScript	View	Script viewing permissions
Access Token Management	Full	Manage tokens for authentication

Save the new role and assign it to the necessary employee records.

Necessary Permissions for Fetching and Deploying

If using a role like SCDeployer, ensure that it has the same permissions settings as any custom roles. This is crucial for fetching and deploying without issues. Here are some essential permissions to include:

Documents and Files - Full
Custom Record Entries - Full
SuiteScript - Full
SOAP & REST Web Services - Full

Best Practices

Regularly review permissions to ensure compliance with security standards.
Use token-based authentication to enforce 2FA for enhanced security during file operations.

Who This Affects

This information is relevant for:

NetSuite Administrators: Responsible for setting up user roles and permissions.
Developers: Who require role access to fetch and deploy files effectively using developer tools.

Key Takeaways

Appropriate roles and permissions are essential for security in NetSuite.
Two-factor authentication is mandatory for accounts since version 2018.2.
Default roles like Administrator facilitate file management, but custom roles can be created as needed.

Source: This article is based on Oracle's official NetSuite documentation.

Frequently Asked Questions (4)

Do I need to enable a feature flag to use the Commerce developer tools in NetSuite?

No feature flag is needed specifically for the Commerce developer tools, but you must have a role with the appropriate permissions to use them effectively.

What are the necessary permissions to include when creating a custom role for deploying files?

When creating a custom role for deploying files, ensure it has permissions such as 'Documents and Files,' 'Custom Record Entries,' 'SuiteScript,' and 'SOAP & REST Web Services,' all set to full.

Is 2FA mandatory for all operations using Commerce developer tools in NetSuite?

Yes, since NetSuite 2018.2, two-factor authentication is mandatory for securely performing fetch and deploy operations using Commerce developer tools.

Will creating a custom role affect existing workflows in NetSuite?

The creation of a custom role in itself will not affect existing workflows, but ensure that necessary permissions are granted to avoid any workflow disruptions.

Developer Tool Roles and Permissions in NetSuite