Full Access Role Deprecation Impact on NetSuite Security
The Full Access role is deprecated, impacting role assignments and security measures in NetSuite. Key replacements include custom roles.
The Full Access role in NetSuite has been deprecated as part of a security enhancement. As of the 2021.1 release, this role can no longer be assigned to new users. This change was implemented because the capabilities of roles and permissions in NetSuite have significantly expanded, making the Full Access role redundant.
Reasons for Deprecation
The deprecation of the Full Access role aims to enhance security by ensuring more granular access controls. Here are some key considerations for replacing the Full Access role:
- Assign Existing Roles: Evaluate if users already have roles that can provide the necessary access. You can reassign these roles effectively.
- Analyze User Needs: Determine what access elements the Full Access role provided that are not available through alternative existing roles or global permissions.
- Customize or Create Roles: If the standard roles do not meet specific requirements, you have the option to customize them or create new ones, providing tailored access for users.
- Use Administrator Role: For high-access needs, consider using the Administrator role, which has broad permissions.
- Core Administration Permissions: A new permission, Core Administration Permissions, has been introduced to offer some of the functions previously accessible under the Full Access role.
- Global Permissions Feature: If enabled in your account, you can provide additional permissions to users through the Global Permissions feature, although it's recommended to approach with caution as its usage is not preferred.
It is important to note that the Full Access role is now inactive for users who were previously assigned this role. The role will not appear in the list of available roles for reassignment. However, an Administrator can reactivate it if required, though this method is not recommended.
Who This Affects
- Administrators: Need to reassign roles or create new ones for users.
- Developers: Must understand the implications of role assignment on system integration.
- Accountants and Other Users: Will experience changes in their access rights and may require reassignment of roles to maintain their workflow.
Key Takeaways
- The Full Access role is deprecated, improving security by requiring specific role assignments.
- Users should be transitioned to existing roles or newly customized roles instead of using the deprecated Full Access role.
- Evaluate the use of Core Administration Permissions as a viable alternative.
Source: This article is based on Oracle's official NetSuite documentation.
Frequently Asked Questions (4)
What should be done if the Full Access role was previously assigned to a user?
Can the Administrator role be used as an alternative to the deprecated Full Access role?
What is the purpose of the Core Administration Permissions introduced after the deprecation?
How should developers prepare for the deprecation of the Full Access role?
Was this article helpful?
More in Administration
- Unlimited Sandbox Refreshes in NetSuite 2026.1
Starting in NetSuite 2026.1, sandbox accounts can be refreshed an unlimited number of times, enhancing testing capabilities.
- Administration Enhancements in NetSuite 2026.1
Updates in NetSuite 2024.1 enhance Administration SuiteApps, continuing refinements from 2026.1.
- Create Integration Records for OAuth 2.0 in NetSuite 2026.1
In NetSuite 2026.1, administrators can create integration records for applications to use OAuth 2.0, enabling secure access. Here's how.
- Prompt Studio: Generative AI Management in NetSuite 2026.1
Prompt Studio in NetSuite 2026.1 enhances generative AI management, enabling customization of prompts and Text Enhance actions.
Advertising
Reach Administration Professionals
Put your product in front of NetSuite experts who work with Administration every day.
Sponsor This Category