A custom role with Full permission to Chart of Accounts (Lists > Accounting > Accounts) may see all the accounts but may sometimes find that not all accounts are clickable. In order to drill down to an account, the user’s role must have at least a View access level to the account’s register. Note: The… Continue reading COA Permissions for Custom Roles
Tag: role permission
Permissions for Custom Transaction Instances
For each custom transaction type, you can specify which roles can work with instances of the transaction type. When users create a new custom transaction type, NetSuite automatically adds full-level permission for the role of the current user. The permission is added so that users can use the global search to find and work with… Continue reading Permissions for Custom Transaction Instances
Permissions to Use Dashboard Tiles
Scenario: Granting Permissions to Use Dashboard Tiles When Dashboard Tiles is installed, the dashboard tiles custom record becomes available. The following table lists the permissions required to access the dashboard tiles custom record. Custom Record : Dashboard Tiles Minimum Permission Level : View Maximum Permission Level : Full
Needs to access only the balance sheet without the providing the permission to access the income statement.
Scenario: Client needs to access only the balance sheet without the providing the permission to access the income statement for the custom role. Solution: Providing the Financial Statement permission within the custom role will provide the permission to access both income statement and income statement. Also, providing the same permission is quite essential to access… Continue reading Needs to access only the balance sheet without the providing the permission to access the income statement.
Email communication is not present in transactions for a custom role.
For a custom role, the Email icon is not shown in any transaction record. To enable this, we need to enable Track messages in the Lists subtab of the custom role record.
Core Administrator Permission
The Full Access role has been inactivated for all users. The Full Access role no longer appears in the list of roles available for users who had this role assigned. The Core Administration Permissions checkbox is available on the role configuration page on Setup > Users/Roles > Manage Role and edit one role. This is created… Continue reading Core Administrator Permission
List of Roles With Full SAML Single Sign-On Permission
List of Roles With Full SAML Single Sign-On Permission
Give a role permission to edit existing records but restrict it from creating a new
User wants a role from editing the existing the records but restrict it from creating a new record Solution Navigate to Setup > Customization > Workflow > New. Enter Restrict Create Custom Record in the Name field. Select the Custom Record Type in the Record Type field. Check the On Create check box. Set Trigger… Continue reading Give a role permission to edit existing records but restrict it from creating a new
Best Practices When Working With NetSuite User Roles.
Apply the principle of least privilege when assigning user role permissions. Review all custom record permissions for each user role to ensure all necessary permissions are granted (or removed). Take the time to understand any potential conflicts in segregation of duties between the custom roles in your NetSuite environment and document user role combinations that should not be… Continue reading Best Practices When Working With NetSuite User Roles.
User is getting a SAML error: “Your access has been deactivated on SAML SSO login even when user is active and has access”
Scenarios: Notice: “Your access to [companyname] has been deactivated. Please contact the company’s administrator to re-activate your access” is received on login from IDP platform to NetSuite. Verify if user has an active employee record (List > Employees > Employees) by checking the status on the employee record. Status should be “Active”. Verify if the role… Continue reading User is getting a SAML error: “Your access has been deactivated on SAML SSO login even when user is active and has access”