How to Enable NetSuite Token-Based Authentication
AfterShip supports NetSuite TBA (Token Based Authentication) as an authentication type to prevent unauthorized access.
You can easily use TBA, once you make some required changes with respect to your NetSuite settings. Carefully follow the 5 steps given below to be able to establish a connection with AfterShip:
Access your Oracle NetSuite account > Go to the “Setup” tab > Company > Company Information
Your account number will be listed under the Account ID field
Copy it for later use
Again, go to the “Setup” tab of your Oracle NetSuite account > Company > Enable Features > SuiteCloud > Manage Authentication
In the SuiteScript section, check Client SuiteScript and Server SuiteScript
In the SuiteTalk (Web Services), check REST Web Services
In the Manage Authentication section, check Token-Based Authentication
Scroll to the bottom of the page and click Save
Once the TBA is enabled, go back to the “Setup” tab > click on “Integrations” > Manage Integrations > New
Set the name to "AfterShip Integration" and perform these actions
Check the "Token-Based Authentication" option
Uncheck the "TBA: AUTHORIZATION FLOW" and "AUTHORIZATION CODE GRANT" options
Check the "TBA: ISSUETOKEN ENDPOINT" option

In case you already have an integration record for AfterShip, you can reuse it by simply modifying settings as mentioned above.
Copy the values mentioned for “Consumer Key/Client Key” and “Consumer Secret/Client Secret”
Note:You can reuse the values for multiple access tokens.
Make sure that you copy the values properly, as they will be shown only once.
Go to Setup > Users/Roles > Manage Roles > New
Under the Subsidiary Restrictions choose All

Create a role and allow necessary permissions for successful AfterShip integration. Here’s what you need to take care of:
Lists - Customers
Lists - Contacts
Lists - Currency
Lists - Items
Lists - Perform Search
Lists - Persist Search
Reports - SuiteAnalytics Workbook
Transactions - Find Transactions
Transactions - Sales Order
Transactions - Item Fulfillment
Transactions - Fulfill Sales Orders
Transactions - Return Authorization (for RMA creation feature)
Transactions - Sales Order
Setup - SOAP Web Services
Setup - Rest Web Services
Setup - User Access Token (for Token-Based Authentication)
Make sure each created role has the "User Access Tokens" permission, as it’s important for using the TBA.
Now, assign the created role to concerned individuals. Go to Lists > Employees > Employees > Edit user > Access > Roles
Go to Setup > Users/Roles > Access Tokens > New
Select the Integration record, User, and Role that you’ve created by following the aforementioned steps
Token Id and Token Secret will be displayed after tapping the “Save” button. Copy the values for AfterShip integration
Now, click on this link and paste all the copied values to establish a successful connection with AfterShip.

Note: The same ‘Consumer Key,’ ‘Consumer Secret,’ ‘Token ID,’ and ‘Token Secret’ can be used multiple times while creating more connections.
For any help, contact our chat support team
You can easily use TBA, once you make some required changes with respect to your NetSuite settings. Carefully follow the 5 steps given below to be able to establish a connection with AfterShip:
1️⃣ Get the account ID
Access your Oracle NetSuite account > Go to the “Setup” tab > Company > Company Information
Your account number will be listed under the Account ID field
Copy it for later use
2️⃣ Enable Token Based Authentication (TBA)
Again, go to the “Setup” tab of your Oracle NetSuite account > Company > Enable Features > SuiteCloud > Manage Authentication
In the SuiteScript section, check Client SuiteScript and Server SuiteScript
In the SuiteTalk (Web Services), check REST Web Services
In the Manage Authentication section, check Token-Based Authentication
Scroll to the bottom of the page and click Save
3️⃣ Create an Integration Record
Once the TBA is enabled, go back to the “Setup” tab > click on “Integrations” > Manage Integrations > New
Set the name to "AfterShip Integration" and perform these actions
Check the "Token-Based Authentication" option
Uncheck the "TBA: AUTHORIZATION FLOW" and "AUTHORIZATION CODE GRANT" options
Check the "TBA: ISSUETOKEN ENDPOINT" option

In case you already have an integration record for AfterShip, you can reuse it by simply modifying settings as mentioned above.
Copy the values mentioned for “Consumer Key/Client Key” and “Consumer Secret/Client Secret”
Note:You can reuse the values for multiple access tokens.
Make sure that you copy the values properly, as they will be shown only once.
4️⃣ Create a role and assign users
Go to Setup > Users/Roles > Manage Roles > New
Under the Subsidiary Restrictions choose All

Create a role and allow necessary permissions for successful AfterShip integration. Here’s what you need to take care of:
Lists - Customers
Lists - Contacts
Lists - Currency
Lists - Items
Lists - Perform Search
Lists - Persist Search
Reports - SuiteAnalytics Workbook
Transactions - Find Transactions
Transactions - Sales Order
Transactions - Item Fulfillment
Transactions - Fulfill Sales Orders
Transactions - Return Authorization (for RMA creation feature)
Transactions - Sales Order
Setup - SOAP Web Services
Setup - Rest Web Services
Setup - User Access Token (for Token-Based Authentication)
Make sure each created role has the "User Access Tokens" permission, as it’s important for using the TBA.
Now, assign the created role to concerned individuals. Go to Lists > Employees > Employees > Edit user > Access > Roles
5️⃣ Create an Access Token for the Integration record, User, and Role
Go to Setup > Users/Roles > Access Tokens > New
Select the Integration record, User, and Role that you’ve created by following the aforementioned steps
Token Id and Token Secret will be displayed after tapping the “Save” button. Copy the values for AfterShip integration
👨💻 Establish a connection with AfterShip
Now, click on this link and paste all the copied values to establish a successful connection with AfterShip.

Note: The same ‘Consumer Key,’ ‘Consumer Secret,’ ‘Token ID,’ and ‘Token Secret’ can be used multiple times while creating more connections.
For any help, contact our chat support team
Updated on: 15/09/2023
Thank you!