Skip to main content

How to set up NetSuite credentials for the AP Integration

This article describes how to obtain for the credentials needed to setup for the AP Only NetSuite integration.

Updated today

If you have multiple Procurify domains mapped to different subsidiaries in NetSuite, read the "Additional setup for Multi-Subsidiary / Multi-Domain customers" section at the end of this article before starting. You'll still follow Steps 1 through 8, but you'll create one role and one access token per subsidiary.

Step 1: Finding your NetSuite Account ID

  1. Enter your NetSuite Account ID in the Linking flow

  2. This is the combination of letters or numbers before "app.netsuite.com" of the URL

  3. If your URL is "https://7600508.app.netsuite.com...", your NetSuite Account ID is 7600508

Step 2: Enable SuiteCloud features

  1. Open the NetSuite Enable Features Page

  2. Under SuiteCloud, check the following boxes then click save

    1. SOAP WEB SERVICES

    2. REST WEB SERVICES

    3. TOKEN-BASED AUTHENTICATION

Step 3: Install the AccountLink NetSuite bundle

  1. Install the following Permissions Bundle

    1. Merge Full Permissions Bundle will allow for read-and-write access

  2. It may take up to 5 minutes to install and you may be re-routed to the Installed Bundles page when the installation is complete

The bundle creates a role that can authenticate to NetSuite's API. For a full list of the role's permissions, see this article. The permissions may be updated, or a separate Role may be used, but doing so could result in permission issues.

Step 4: Provide access to custom transaction types, records, and segments

This step is required if you have custom transaction types, custom records, or custom segments within your NetSuite instance that you need to grant access to.

  • If you are unsure whether you have any custom transaction types, open this link to determine if you do.

  • If you are unsure whether you have any custom record types, open this link to determine if you do.

  • If you are unsure whether you have any custom segments, open this link to determine if you do.

If these does not apply to you, skip to Step 5.

  1. Navigate to Setup > Users/Roles > Manage Roles

    NetSuite_Roles.png

  2. Locate and select the role associated with the account

  3. Within the role, scroll down to Permissions

    1. If you are adding a custom transaction type, go to the Transactions subtab

    2. If you are adding a custom record type or segment, go to Custom Record subtab

      NetSuite_Custom_Transactions.png

  4. Add your custom transaction type, record, or segment to the permissions list.

  5. Save

Step 5: Assign a user to the role

  1. Open Manage Users

  2. Either select a user to assign the Role to or create a new user

    • Most users use an existing user (often yourself) so that an additional NetSuite seat is not consumed

    • To create a new user, however, go to Lists > Employees > Employees > New. Create the user and grant them NetSuite access by going to the Access tab in the Employee record and select 'Give Access'

  3. In the user's employee record, click Edit and go to the Access tab. In your Access tab, go to Roles and select the Role you imported through the Import Bundle process in Step 3

  4. Click Save to apply these changes

Step 6: Create an integration to obtain your Consumer Key and Secret

  1. Navigate to Integration and create an integration with the following details

    • NAME: Procurify Integration AP

    • CONCURRENCY LIMIT: leave blank

      • Suggested: As a part of this process, review your Integration Governance settings (navigate to Setup > Integration > Integration Governance) to understand your account’s available concurrency and how it is allocated across your integrations.

        1. If your settings show an Unallocated Concurrency Limit of less than three, we suggest reviewing other integrations to determine where your concurrency is allocated.

      • Again, we suggest leaving the allocated concurrency limit null. If you must allocate, a minimum of 3 is suggested.

    • CALLBACK URL: https://app.merge.dev/oauth/callback

    • REDIRECT URI: https://app.merge.dev/oauth/callback

    • Check the following boxes

      • REST WEB SERVICES

      • TOKEN-BASED AUTHENTICATION

      • TBA AUTHORIZATION FLOW

  2. Once you click save, Copy the Consumer Key and Consumer Secret and store them in a safe place. They will only be shown once and you will need to enter it in Step 8.

Step 7: Create an access token to obtain your Token ID and Secret

  1. Navigate to Access Token

  2. Ensure the below details are selected and click Save

    • Application Name: Procurify Integration

    • User: User that the Role was added to during Step 5

    • Role: The imported role (Merge Full Permissions)

  3. Copy the Token ID and Token Secret and store them in a safe place. They will only be shown once and you will need to enter it in Step 8.

Step 8: Enter credentials in the linking flow

  1. Consumer Key: Confirmation screen after creating the integration

  2. Consumer Secret: Confirmation screen after creating the integration

  3. Token ID: Confirmation screen after creating your Access Token

  4. Token Secret: Confirmation screen after creating your Access Token

Hit Next and a connection with NetSuite will be established. An initial data sync is required and depending on how much data is in NetSuite, it may take up to 6 hours.

Additional setup for Multi-Subsidiary / Multi-Domain customers

This section is only required if you run multiple Procurify domains that map to different subsidiaries in NetSuite. If you have a single-subsidiary setup, you're done after Step 8.

For multi-domain setups:

  • You use one integration record, with the same Consumer Key and Consumer Secret across all domains (from Step 6)

  • You use one NetSuite user (from Step 5)

  • You create a separate role per subsidiary, each restricted to only the subsidiary it should access

  • You generate a separate Access Token per domain, tied to that domain's subsidiary-specific role. This gives you a different Token ID and Token Secret to paste into each Procurify domain.

  1. For each additional subsidiary beyond the first, duplicate the Merge Full Permissions role:

    1. Navigate to Setup > Users/Roles > Manage Roles

    2. Open the Merge Full Permissions role

    3. Rename it first (for example, "Procurify - Subsidiary Name"), then click Save As. If you click Save As before renaming, NetSuite will overwrite the original role.

    4. In the new role, scroll to the Subsidiary Restrictions section and select only the subsidiary this domain should access

    5. Click Save

  2. Assign all subsidiary-specific roles to the user from Step 5:

    1. Open Manage Users and select the user

    2. Click Edit, go to the Access tab, and add each subsidiary-specific role

    3. Click Save

  3. Repeat Step 7 once per domain to generate a separate Token ID and Token Secret for each. Make sure to select the matching subsidiary-specific role each time. The Consumer Key and Consumer Secret from Step 6 stay the same across all domains.

  4. Repeat Step 8 in each Procurify domain, pasting in the Token ID and Token Secret that belongs to that domain's subsidiary.

Related Articles
How to set up NetSuite credentials to sync bills from Procurify
Configuring NetSuite SuiteApp settings (Purchase Order/Item Receipt Integration)
Create a NetSuite user setup account and API Credentials
NetSuite AP Integration Overview and Set Up
How to map from Procurify to NetSuite for Bill Sync? AP Integration
Did this answer your question?