NetSuite Permissions Overview and Management

NetSuite provides an extensive suite of permissions that control user access to data and functionality within the system. Understanding and managing these permissions is crucial for ensuring that users have the appropriate access based on their roles, whether they are employees, vendors, partners, or customers.

What Are NetSuite Permissions?

Permissions in NetSuite determine what users can see and do within the system. Each user is assigned a role that comes with a predefined set of permissions relating to record types, tasks, and interface components.

How Are Permissions Assigned?

Roles in NetSuite include a variety of predefined permissions, especially tailored for specific business functions. For example, the Administrator role allows for the creation and customization of roles to cater to unique business needs.

Access to Role Permissions

To view and customize role permissions:

• Navigate to Setup > Users/Roles > Manage Roles.
• Select a role and click Customize to add or modify permissions.

Permissions are organized into categories, including:

• Transactions
• Reports
• Lists
• Setup
• Custom Records

Different access levels can be assigned to many permissions, allowing for granular control over user capabilities.

Comparing Role Permissions

NetSuite also offers tools to facilitate permissions management:

• Show Role Differences: Use this feature under Setup > Users/Roles to compare permissions across multiple roles and identify differences.
• Permissions Usage Spreadsheet: This document outlines how permissions correlate with various record types and tasks. You can access it from the Help Center.

Important Considerations

• Advanced Employee Permissions: If this feature is enabled, you may create specific roles like Employee Self or Employee Confidential. Custom roles can then be tailored from these permissions.
• Global Permissions: When enabled, these allow direct assigning of permissions to employees. Note that global permissions take precedence over role-specific permissions, so conflicts should be resolved considering this hierarchy.
• Sensitive Data Permissions: Special permissions like View Unencrypted Credit Card Numbers require a signed agreement to be assigned to roles. It is crucial to handle this sensitive data carefully.
• Employee Information Masking: There is an option available to mask employee information in financial reports, providing an additional layer of privacy.

Updating Roles After Feature Enables

If new features are activated, it’s important to reassess permissions for customized roles already in use. Adjustments may be necessary to ensure continued access to newly added functionalities.

Key Resources

For further reading and detailed instructions, refer to:

• NetSuite Roles Overview
• NetSuite Users Overview

Who This Affects

This article is relevant for:

• Administrators: Responsible for setting up and managing permissions.
• Developers: Need to understand access controls for application integrations.
• Accountants: Require specific financial permissions within their roles.

Key Takeaways

• Permissions in NetSuite dictate user access to data and functionality.
• Roles consolidate sets of permissions tailored for business functions.
• Advanced features like Global Permissions can affect role-based access.
• Regular reviews of permissions are essential, especially after new feature deployments.
• Specific permissions necessitate agreements for sensitive data access, underscoring the importance of security policies.

Source: This article is based on Oracle's official NetSuite documentation.