NetSuite Admins will be required to create a NetSuite Token & Secret for each licensed user unless the users have NetSuite permissions to create their own tokens. Users will then need to enter those tokens into the Gmail extension one time to login.

A positive benefit to using tokens is that unlike passwords, they do not expire.

Prerequisites for Token Based Authentication (TBA)

NetSuite Admins will need to first ensure that their organization has enabled support for token based authentication by going to:

Setup > Company > Setup Tasks > Enable Features > SuiteCloud > Manage AuthenticationMake and checking that “Token Based Authentication” is enabled.

Steps to setup TBA access for users

NetSuite Admins can always generate tokens and secrets for end users. To save administrative overhead they can also give end users permission to manage this on their own.

Step 1: Ensure that you can create tokens from the desired roles

Decide if you will allow users to create their own tokens or if a user (such as Admin) will create tokens for the users. Make sure that this role has the permission ‘User Access Tokens’ enabled.

Step 2: Ensure the user's role has permission to login with tokens.

For the role that will be using the tokens to sign in (typically a user) be sure that the permission ‘Log in using Access Tokens’ has been enabled.

Step 3: Create Tokens 

As noted above, Admins can create and distribute tokens or end users can be given permissions to do so on their own. Find your use case below.

  • End user creating a token for yourself?

    • You must create your token from the home page. Scroll to bottom left and you will see 'Manage Access Tokens' under settings.

    • Select the application (Celigo CloudExtend for Google Apps) the desired role, and accept the default name for the token name or supply your own then press save.

    • IMPORTANT - Save the token ID and token secret on the next screen to a secure location as these need to be shared with each licensed user to be entered into the app and subsequently login.

  • Admin creating tokens for distribution to other users?
    Use global search for page: tokens or navigate to Setup->Users/Roles->Access Tokens.

    • Select New Access Token

    • Select the application (Celigo CloudExtend for Google Apps). Because you are creating these tokens for a specific user AND role you must select the user and the role that they will login with when using their tokens. Accept the default name for the token name or supply your own then press save.

    • IMPORTANT - Save the token ID and token secret on the next screen to a secure location as these need to be shared with each licensed user to be entered into the app and subsequently login. 

Logging in with your secure token and secret

When prompted to login users should select 'Token Based' (1) login method.

Last, enter your token ID (2) and secret (3) and click 'Update Connection'.

Did this answer your question?