Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
To connect, set the Url to a valid Odoo site, User and Password to the connection details of the user you are connecting with, and Database to the Odoo database.
In order for the provider to determine what models you can access in Odoo, the user you connect with must have permissions to read from "ir.model.access" (an internal Odoo model that governs access rights). Normally this is reserved for administrators, but it can be granted to any user by creating a Service group:
As an administrator, open the Odoo settings page and enable "developer mode"
Open the Groups page and create a new group
Set the Application to "Administration" and the name to "Service Access"
Add any users who need Service access in the Users tab
In the Access Rights tab, add an entry for the "ir.model.access" object, check Read Access, and give it the name "Inspect Models"
Save the group
If making this change is not possible, then you should set the CheckPermissions option to false. That will list all models in Odoo as tables, regardless of what permissions your user actually has for those models.
Dynamics 365 Business Central supports several different endpoints to connect to data, with the two main categories being the Common Service endpoints, and the Web Services endpoints. Beyond that, each set of endpoints are split into Production and Testing endpoints. Production endpoints require an OAuth connection, whereas Testing endpoints may be connected to via User and AccessKey. Note that both Production and Testing endpoints access and interact with the same data - they just have different restrictions on what authentication methods are allowed.
The OrganizationUrl by default will attempt to resolve to a Common Service Production endpoint if any https://businesscentral.dynamics.com/ URL is specified. However, this may be configured by modifying the EndpointType. In addition, specifying any https://api.businesscentral.dynamics.com/ will override both EndpointType and UseSandbox as the specified OrganizationUrl supplied will be used without alteration.
Common Service endpoints contain the business data associated with Dynamics 365 Business Central. For instance, accounts, sales orders, and sales invoices will all be found on the Common Service.
https://api.businesscentral.dynamics.com/v2.0/{environment name}/api/v1.0
https://api.businesscentral.dynamics.com/v1.0/api/v1.0
https://api.businesscentral.dynamics.com/v1.0/sandbox/api/v1.0
https://api.businesscentral.dynamics.com/v2.0/{tenant id}/{environment name}/api/v1.0
https://api.businesscentral.dynamics.com/v1.0/{tenant id}/api/v1.0
https://api.businesscentral.dynamics.com/v1.0/{tenant id}/sandbox/api/v1.0
Note: The Tenant Id is the id of your tenant in Azure that the Business Central app is available on. This may be obtained by logging into portal.azure.com, selecting your user name, and going to Switch Directory. It may also be found under portal.azure.com, going to Active Directory, and Overview. Environment names may be found under https://businesscentral.dynamics.com/{tenant id}/admin.
Web Service endpoints include anything that has been custom exposed in Dynamics 365 Business Central. This may include KPIs, reports, individual entites, or other feeds. In Dynamics 365 Business Central, click the magnifying glass and search for Web Services to get an idea of what all are exposed by these endpoints.
https://api.businesscentral.dynamics.com/v1.0/ODataV4/
https://api.businesscentral.dynamics.com/v1.0/{tenant id}/ODataV4/
In the 2019 version, the default endpoint resolved to was the Web Services testing endpoint if a https://businesscentral.dynamics.com/ url was supplied to OrganizationUrl. The new default is the Common Service production endpoint. To continue using the Web Services testing endpoint, either set it directly or change the EndpointType to WSTesting.
To connect to data, specify OrganizationUrl. The OrganizationUrl should be either the endpoint to your business central account such as https://businesscentral.dynamics.com/abc123/, or it should reference the web services root. Please see Business Central Endpoints for more details on how to specify the OrganizationUrl and which endpoints are available.
If you have multiple companies in your organization, you must also specify the Company to indicate which company you would like to connect to. Company does not need to be specified if you have only one company.
To authenticate to Dynamics 365 Business Central, you may provide the User and AccessKey connection properties. Microsoft recommends these for testing and development purposes, but discourages their use for production environments.
To obtain the User and AccessKey values, navigate to the Users page in Dynamics 365 Business Central and then click on Edit. The User Name and Web Service Access Key values are what you will enter as the User and AccessKey connection string properties. Note that the User Name is not your email address. It is a shortened user name.
Microsoft recommends for production use cases to use OAuth authentication. Below is an explanation of how to connect via OAuth. OAuth requires the authenticating user to interact with Dynamics365. To connect, you will need to register an app in Azure. Below we list the steps on how to register an App on Azure.
Create an Azure App using the New Portal
Log in to https://portal.azure.com.
On the left hand side, select Azure Active Directory, then App Registrations and click the Add button.
In the menu presented, give a name to your app, select app/web api
set the CallbackURL to the appRulesPortal URL (example: http://localhost:8080)
Now go to Keys and create a key for the app. You can select to create a key with a limited duration, or one that never expires. Selecting one that never expires will prevent you from having to create further keys in the future and is recommended.
After the key is saved, a value for the key will be displayed once. Save this value or write it down. You will also need to save the value of the Application Id currently displayed.
Now select required permissions and Add. Under Select an API, choose Business Central.
Once the Dynamics365 app has been added to the required permissions, select it from the menu and under Delegated Permissions, select Access Business Central as organization users.
Save your changes.
Authenticate to Dynamics365 in appRules Portal when creating a new datasource
Set the following connection properties:
OrganizationUrl: The organization url you are connecting to such as https://[organization].crm.dynamics.com.
OAuthClientId: Set this to the application id displayed for the app you created in Azure.
OAuthClientSecret: Set this to the value of the key you created in Azure.
Use the following process to Get your access and refresh tokens
The connector will use the refresh token to obtain a new access token once the current access token has expired. This is generally the best method of configuring OAuth.
If you are running Dynamics 365 Business Central on an Azure VM, you can leverage Managed Service Identity (MSI) credentials to connect:
AuthScheme: Set this to AzureMSI.
The MSI credentials will then be automatically obtained for authentication.
Other properties (Proxy...) are detailed in section common properties
In order to connect to the Acumatica data source, you will first need to specify the below connection properties.
Url: (Required) The base URL for the Acumatica ERP instance. For example: https://domain.acumatica.com/entity/.
Schema: (Optional) There are two schemas which contains different data. The default one is REST which uses the Acumatica REST Contract Based API and the OData which uses the Acumatica OData API. The OData schema is used to query Acumatica Generic Inquiries.
Company: (Partially required) Set this to the name of your company or tenant. It is required if Schema is set to "OData".
EndpointVersion: (Optional) The version of the Web Services endpoint. For example: 17.200.001. This is applicable only for the "REST" schema.
EndpointName: (Optional) The name of the Web Services endpoint. For example: Default. This is applicable only for the "REST" schema.
To find out the EndpointVersion and EndpointName for your Acumatica instance, log into Acumatica in a web browser, and then navigate to the 'Web Service Endpoints' screen. If necessary, navigate to this screen by editing the web browser URL and replacing ScreenId=00000000 (the homepage) with ScreenId=SM207060. If you are redirected back to the homepage, this means your user does not have the necessary permissions to access web services. Under Endpoints properties get the Endpoint Name and Endpoint Version.
There are two authentication methods available for connecting to Acumatica data source, Basic and OAuth.
Set the AuthScheme to Basic and set the User and Password to your login credentials.
The Acumatica data source also supports the OAuth 2.0 authentication standard. To authenticate using OAuth, you will need to create and configure a custom OAuth app, then set AuthScheme to OAuth and fill in the OAuth credentials.
You can follow the procedure below to obtain the OAuth client credentials, the OAuthClientId and OAuthClientSecret.
You use the Connected Applications (SM303010) form to register an OAuth 2.0 or OpenID Connect client application. To register a client application in Acumatica ERP, you need to know the OAuth 2.0 flow that this application implements.
When you are registering the client application, you have to be logged in to the tenant whose data the client application needs to access.
On the System tab, click Integration. In the navigation pane, navigate to Configure > Connected Applications.
In the Client Name box, type the name of the registered application.
In the OAuth 2.0 Flow box, select Authorization Code.
On the Secrets tab, do the following for each client secret you want to add:
On the tab toolbar, click Add Shared Secret. The Add Shared Secret dialog box opens.
In the Description box, type the description of the shared secret.
Optional: In the Expires On (UTC) box, enter the date and time on which the secret expires.
Copy and save the value that is displayed in the Value box. The client application should use this client secret for authentication in Acumatica ERP.
Click OK to save the secret and close the dialog box.
On the Redirect URIs tab, do the following for each redirect URI you want to add: On the tab toolbar, click Add Row. In the Redirect URI column of the new row, type the exact redirect URI to which Acumatica ERP should redirect the client application after the client application has been authorized. The redirect URI must be absolute and must not have the fragment part (the part preceded with #). On the form toolbar, click Save. Notice that the client ID has been generated in the Client ID box. The client application should use this client ID along with the client secret for authentication in Acumatica ERP.
In order to obtain a token, the client application needs to call the Oauth2 endpoint using various grants depending on the authentication scenarios required. The default OAuthGrantType is CODE, which requires you to follow the steps below. After setting the following connection properties, you are ready to connect:
OAuthClientId: Set this to your clientId.
OAuthClientSecret: Set this to your clientSecret.
InitiateOAuth: Set this to GETANDREFRESH. You can use InitiateOAuth to avoid repeating the OAuth exchange and manually setting the OAuthAccessToken connection property.
CallbackURL: Set this to the redirect URI configured in the oauth application.
When you connect, the connector completes the OAuth process:
Extracts the access token from the CallbackURL.
Obtains a new access token when the old one expires.
Saves OAuth values along with geolocation in OAuthSettingsLocation to be persisted across connections.
The following are the connection properties for Acumatica. Not all properties are required. Enter only property values pertaining to your installation. Several properties will be automatically initialized with the appRules defaults.
| Configuration Property | Value |
|---|---|
Initiate OAuth
REFRESH
OAuth Access Token
Set to the value of the OAuth access token obtained from the endpoint
OAuth Refresh Token
Set to the value of the OAuth refresh token obtained from the endpoint
Property
|
Description
|
Authentication |
Company | Your Acumatica Company. |
Password | Your Acumatica password that goes with the $rpUser;. |
URL | Url parameter is used to Authenticate the driver with the Acumatica API. |
User | Your Acumatica username. |
Caching |
AutoCache | Automatically caches the results of SELECT queries into a cache database specified by either CacheLocation or both of CacheConnection and CacheProvider . |
CacheConnection | The connection string for the cache database. This property is always used in conjunction with CacheProvider . Setting both properties will override the value set for CacheLocation for caching data. |
CacheLocation | Specifies the path to the cache when caching to a file. |
CacheMetadata | This property determines whether or not to cache the table metadata to a file store. |
CacheProvider | The name of the provider to be used to cache data. |
CacheTolerance | The tolerance for stale data in the cache specified in seconds when using AutoCache . |
Offline | Use offline mode to get the data from the cache instead of the live source. |
Firewall |
FirewallPassword | A password used to authenticate to a proxy-based firewall. |
FirewallPort | The TCP port for a proxy-based firewall. |
FirewallServer | The name or IP address of a proxy-based firewall. |
FirewallType | The protocol used by a proxy-based firewall. |
FirewallUser | The user name to use to authenticate with a proxy-based firewall. |
Logging |
Logfile | A path to the log file. |
MaxLogFileCount | A string specifying the maximum file count of log files. When the limit is hit, a new log is created in the same folder with the date and time appended to the end and the oldest log file will be deleted. |
MaxLogFileSize | A string specifying the maximum size in bytes for a log file (for example, 10 MB). When the limit is hit, a new log is created in the same folder with the date and time appended to the end. |
Verbosity | The verbosity level that determines the amount of detail included in the log file. |
Misc |
ConnectionLifeTime | The maximum lifetime of a connection in seconds. Once the time has elapsed, the connection object is disposed. |
ConnectionString | *** |
GenerateSchemaFiles | Indicates the user preference as to when schemas should be generated and saved. |
IncludeCustomFields | Whether or not to retrieve custom fields that are added to Acumatica Screens. |
InquiryTables | Comma seperated Inquiry Tables. Inquiry tables in Contract 3 Acumatica API version 17.200.001 are: AccountByPeriodInquiry, AccountBySubaccountInquiry, AccountDetailsInquiry, AccountSummaryInquiry, InventoryAllocationInquiry, InventorySummaryInquiry, InvoicedItemsInquiry, SalesPricesInquiry,VendorPricesInquiry. |
MaxRows | Limits the number of rows returned rows when no aggregation or group by is used in the query. This helps avoid performance issues at design time. |
Other | These hidden properties are used only in specific use cases. |
PoolIdleTimeout | The allowed idle time for a connection before it is closed. |
PoolMaxSize | The maximum connections in the pool. |
PoolMinSize | The minimum number of connections in the pool. |
PoolWaitTime | The max seconds to wait for an available connection. |
PseudoColumns | This property indicates whether or not to include pseudo columns as columns to the table. |
Readonly | You can use this property to enforce read-only access to Acumatica from the provider. |
SSLServerCert | The certificate to be accepted from the server when connecting using TLS/SSL. |
SupportEnhancedSQL | This property enhances SQL functionality beyond what can be supported through the API directly, by enabling in-memory client-side processing. |
Timeout | The value in seconds until the timeout error is thrown, canceling the operation. |
UseConnectionPooling | This property enables connection pooling. |
Proxy |
ProxyAuthScheme | The authentication type to use to authenticate to the ProxyServer proxy. |
ProxyAutoDetect | This indicates whether to use the system proxy settings or not. This takes precedence over other proxy settings, so you'll need to set ProxyAutoDetect to FALSE in order use custom proxy settings. |
ProxyExceptions | A semicolon separated list of hosts or IPs that are exempt from connecting through the ProxyServer . |
ProxyPassword | A password to be used to authenticate to the ProxyServer proxy. |
ProxyPort | The TCP port the ProxyServer proxy is running on. |
ProxyServer | The hostname or IP address of a proxy to route HTTP traffic through. |
ProxySSLType | The SSL type to use when connecting to the ProxyServer proxy. |
ProxyUser | A user name to be used to authenticate to the ProxyServer proxy. |
Schema |
Location | A path to the directory that contains the schema files defining tables, views, and stored procedures. |
Schema | Used to specify what Acumatica Api to use. The default one is the REST Contact API. When OData is specified the OData API will be used and all the Generic Inquires exposed via OData will be dynamically retrieved. |
Tables | This property restricts the tables reported to a subset of the available tables. For example, Tables=TableA,TableB,TableC. |
Views | Restricts the views reported to a subset of the available tables. For example, Views=ViewA,ViewB,ViewC. |
To connect set the Url to the Web services endpoint; for example, http://{servername}:{port}/Dynamics/GPService. Additionally, set CompanyId; you can obtain this value in the company setup window: Click Tools -> Setup -> Company.
The Dynamics GP data source supports the following authentication methods: Anonymous Authentication, WS-Security (WSS) Authentication, Basic Authentication, NTLM User Authentication, Digest and Negotiate (Kerberos).
In some situations, Dynamics GP may be connected to without setting any authentication connection properties. To do so, simply set the AuthScheme to "None", and you are ready to connect.
Set the User and Password to connect and set AuthScheme to "WSS".
Note: WSS Authentication is the default authentication scheme.
Set the User and Password to connect and set AuthScheme to "Basic".
Set the Windows User and Password to connect and set AuthScheme to "NTLM".
Set the User and Password to connect and set AuthScheme to "Digest".
To authenticate to Dynamics GP using Kerberos, set the following properties:
AuthScheme: Set this to KERBEROS
KerberosKDC: Set this to the host name or IP Address of your Kerberos KDC machine.
KerberosSPN: Set this to the service and host of the Dynamics GP Kerberos Principal. This will be the value prior to the '@' symbol (for instance, ) of the (for instance, ).
You can use one of the following options to retrieve the required Kerberos ticket.
This option enables you to use the MIT Kerberos Ticket Manager or kinit command to get tickets. Note that you won't need to set the User or Password connection properties with this option.
Ensure that you have an environment variable created called KRB5CCNAME.
Set the KRB5CCNAME environment variable to a path pointing to your credential cache file (for instance, C:\krb_cache\krb5cc_0 or /tmp/krb5cc_0). This file will be created when generating your ticket with MIT Kerberos Ticket Manager.
To obtain a ticket, open the MIT Kerberos Ticket Manager application, click Get Ticket, enter your principal name and password, then click OK. If successful, ticket information will appear in Kerberos Ticket Manager and will now be stored in the credential cache file.
Now that the credential cache file has been created, the provider will use the cache file to obtain the kerberos ticket to connect to Dynamics GP.
As an alternative to setting the KRB5CCNAME environment variable, you can directly set the file path using the KerberosTicketCache property. When set, the provider will use the specified cache file to obtain the kerberos ticket to connect to Dynamics GP.
If the KRB5CCNAME environment variable has not been set, you can retrieve a Kerberos ticket using a Keytab File. To do this, set the User property to the desired username and set the KerberosKeytabFile property to a file path pointing to the keytab file associated with the user.
If both the KRB5CCNAME environment variable and the KerberosKeytabFile property have not been set, you can retrieve a ticket using a User and Password combination. To do this, set the User and Password properties to the user/password combo that you use to authenticate with Dynamics GP.
More complex Kerberos environments may require cross-realm authentication where multiple realms and KDC servers are used (e.g. where one realm/KDC is used for user authentication and another realm/KDC used for obtaining the service ticket).
In such an environment, the KerberosRealm and KerberosKDC properties can be set to the values required for user authentication. The KerberosServiceRealm and KerberosServiceKDC properties can be set to the values required to obtain the service ticket.
The following are the connection properties for Microsoft Dynamics GP. Not all properties are required. Enter only property values pertaining to your installation. Several properties will be automatically initialized with the appRules defaults.
Set Host, User, Password, Client, and SystemNumber. Additionally, set Language to the ISO 639-1 language code you use to log into SAP ERP. The default is "EN".
To connect to a machine different from the Host machine, set GatewayHost. The GatewayService property indicates the service on the machine; by default this is HTTP.
To connect to a distributed system or systems with other configurations:
UseSimpleNames: SAP ERP supports attribute names with special characters that many database-oriented tools do not support. You can use this property to replace any nonalphanumeric character with an underscore.
InitialValueMode: Set this to return null or the exact value returned by SAP for fields that have an undefined or unknown value. By default the provider returns null.
If you are connecting to a distributed SAP system, such as a system using load balancing, you must set the following additional properties. An administrator can obtain these connection properties on the Connection tab of the System Entry Properties dialog.
Ā· SystemId: Set this property to the value in the System Id box.
The SystemId property is the System Id or R3Name of the SAP system. The system Id is a string with a maximum of three characters.
Ā· MessageServer: Set this property to the value in the Message Server box. If a value is specified in the SAProuter box, prepend the value in the SAProuter box onto the value for the MessageServer connection string property.
The MessageServer property must be specified when connecting to an SAP system using load balancing.
Ā· Group: If a value is specified, set this property to the value in the Group/Server box.
The Group property specifies the logon group being used. The default in most SAP systems will be PUBLIC.
If you are using a message server service other than HTTP, set MessageServerService.
If you are connecting to an SAP system with a dedicated application server or a custom application server, you can obtain the following connection properties on the Connection tab of the System Entry Properties dialog.
Ā· SystemId: Set this property to the value in the System Id box.
The SystemId property is the System Id or R3Name of the SAP system. The system Id is a string with a maximum of three characters.
Ā· Host: Set this property to the value in the Application Server box.
The Host property specifies the host name of the target system. This value can be a regular host name, IP address, or SAProuter address.
Ā· SystemNumber: Set this property to the value in the SystemNumber box.
The SystemNumber property defines the target system.
If the administrator has configured Secure Network Communication (SNC), you need to set the following additional properties. You can obtain the following SNC connection string properties on the Network tab of the System Entry Properties dialog.
Ā· SNCMode: If the "Activate Secure Network Connections" checkbox is enabled, set the SNCMode connection string property to True. If this checkbox is disabled, set the SNCMode connection property to False.
The SNCMode connection property is a boolean value determining if you are using SNC. The default value is False.
Ā· SNCPartnerName: Set this property to the value in the SNC Name box.
The SNCPartnerName property specifies the application server's SNC name. For example: p:CN=IDS, OU=IT, O=CSW, C=DE
Ā· SNCName: Optional. Set this property to the value in the SNC Name box.
The SNCName property specifies the name of the SNC connection. Set this property to make sure that the correct SNC name is used for the connection.
Ā· SNCQop: Set this property to the selected option in the Secure Network Settings section. For example, if the Integrity option is selected, set the SNCQop property to 3.
Ā· SNCLibPath: Set this property to the path and filename of your SNC library.
The SNCLibPath property specifies the full path to the security library you are using. For example, C:\Secude\secude.xll.
By default, the Classic RFC SDK without Unicode support provided with the library librfc32.dll will be used. To use it, simply place the assembly in the appRulesPortal\Bin folder.
To use the Classic RFC SDK with Unicode support provided with the library librfc32u.dll, set ConnectionType to Classic_Unicode. The following libraries from the RFC SDK must also be available at run time, in addition to librfc32u.dll:
icudt30.dll
icuin30.dll
icuuc30.dll
To use the NetWeaver RFC SDK provided with the library sapnwrfc.dll, set ConnectionType to NetWeaver. The following libraries from the RFC SDK must be available at run time, in addition to sapnwrfc.dll:
icudt30.dll
icuin30.dll
icuuc30.dll
libicudecnumber.dll
libsapucum.dll
The RFCs used by the connector are listed as follows. If any listed below are not available, some or all functionality may not work. T-Code SE37 may be used to view available function modules in SAP.
DDIF_FIELDINFO_GET
RFC_GET_FUNCTION_INTERFACE
RFC_GET_STRUCTURE_DEFINITION
RFC_GET_SYSTEM_INFO
RFC_GET_UNICODE_STRUCTURE
RFC_READ_TABLE
SLDAG_CHECK_FOR_UNICODE
The following connection properties provide basic functionality to select the entities you need:
TableMode: Filters tables from the DD02L system table in SAP.
QueryMode: Filters queries by your SAP workspace.
StoredProcedureFilter: Filters SAP function modules, which are modeled as stored procedures.
The following are the connection properties for SAPERP. Not all properties are required. Enter only property values pertaining to your installation. Several properties will be automatically initialized with the appRules defaults.
Before the provider can connect with Dynamics NAV, OData services need to be enabled on the server. Once OData Services are enabled, the provider will be able to query any services that are published on the server.
In addition, specify a Url to a valid Dynamics NAV server organization root (e.g. http://MyServer:7048) and a ServerInstance (e.g. DynamicsNAV71). If there is not a Service Default Company for the server, set the Company (e.g. 'CRONUS Canada, Inc.') as well.
In a multitenant installation, specify the tenant Id in Tenant (e.g. 'Cronus1').
To authenticate, set the User and Password properties to valid Dynamics NAV logon credentials or Windows user credentials. Select the appropriate authentication method in AuthScheme.
The available authentication schemes are configured in IIS where Dynamics NAV is hosted. In IIS you can select to enable or disable Digest, Basic, Windows, or Anonymous authentication. Please consult with your Dynamics NAV admin to determine which authentication scheme is appropriate for you. Set AuthScheme to one of the following:
NEGOTIATE (default) - It is part of the Windows authentication, also known as Kerberos.
BASIC - Basic authentication.
DIGEST - Digest authentication.
NTLM - Part of the Windows authentication.
NONE - Anonymous authentication.
The following are the connection properties for Dynamics NAV. Not all properties are required. Enter only property values pertaining to your installation. Several properties will be automatically initialized with the appRules defaults.
To connect to data, specify the following:
Url: Set this to your SAP Business One Service Layer root URL.
CompanyDB: Set this to your SAP Business One company database.
To authenticate to SAP Business One, you must provide the User and Password connection properties.
The following are the connection properties for SAPBusinessOne. Not all properties are required. Enter only property values pertaining to your installation. Several properties will be automatically initialized with the appRules defaults.
SuiteTalk is the older SOAP based service we use to communicate with NetSuite. It has broad support for a lot of entities and full support for insert/update/delete. However, the tools offered for selecting data are fairly weak, which yields very poor performance during a SELECT. There is not a great way to join tables. Grouping and aggregating data is unavailable with this API, which means to support them they must be done entirely client side.
SuiteQL is the newer API. It offers a SQL like method of communicating with the service, which allows for more rich join support, as well as group by and aggregations. It also fully supports retrieving only the columns you want to select. This makes it much more performant for selecting data vs SuiteTalk. However, it only supports selecting data.
You may specify which API to connect to by setting Schema. It is recommended to use SuiteQL if you are just retrieving data, and SuiteTalk if you need to both retrieve and modify. Please be aware that each API has different available connection options as described below.
The provider communicates with NetSuite through the NetSuite Web services. This means that any connecting user must have permissions on the specified AccountId to connect through NetSuite Web services.
Permissions may be configured for a role in NetSuite under Setup --> Users/Roles --> Manage Roles. This page contains two lists of permissions, first the most commonly required, and then other permissions for fuller support. Please be aware that it is not possible for us to provide an exhaustive list of permissions as NetSuite adds support for new entities and permissions with each version.
Note: Most of the following permissions fall under the Permissions --> Setup section for a role.
Create or edit a role for Web services permissions
Log into NetSuite and under Setup go to User/Roles -> Manage Roles -> New. Alternatively, edit an existing role.
Click Permissions -> Setup and add the "SOAP Web Services" and "REST Web Services" permissions.
Add other permissions that are needed for interacting with various entities and transactions.
Under Setup, go to User/Roles -> Manage Users and select the user.
On the Access tab, add the newly created role and save the user.
Note: This section is only applicable to SuiteTalk. SuiteQL requires OAuth or Token Authentication.
As of 2020.2, NetSuite will no longer support user / password connections. While the connector will continue to support User/Password connections for Version set to values lower than 2020.2, it is recommended that all customers migrate to OAuth and Token Based Authentication mechanisms described below. Set the AuthScheme to Basic to support user / password credentials, but also be aware that due its removal in newer versions, you must also manually specify a lower Version to use it.
Token Based Authentication or TBA may be used with either SuiteTalk or the SuiteQL Schema. Set the AuthScheme to Token to support TBA. Token Based Authentication is performed by creating the OAuthClientId, OAuthClientSecret, OAuthAccessToken and OAuthAccessTokenSecret directly within the NetSuite UI by an administrator with permissions to do so.
An older model that may still be used by admins is to simply create and assign a token directly in the NetSuite UI. Doing this will allow you to bypass the normal steps for generating an OAuth Access Token. This may be desireable if you would like to have more direct control over giving access, although it will always require manual steps to be taken in the UI each time. Instead, follow these steps to create a token in the UI:
In NetSuite, log in as an administrator role and navigate to Setup --> Company --> Enable Features --> SuiteCloud --> Manage Authentication. Make sure Token-Based Authentication and TBA: Authorization Flow are checked and save changes.
Navigate to Setup --> Integration --> Manage Integrations.
Create a new integration and select Token-Based Authentication.
When the integration is created, the Consumer Key and Consumer Secret displayed will map directly to the OAuthClientId and OAuthClientSecret connection properties. Write these down.
Create a token role by navigating to Setup --> User/Roles --> Manage Roles and either create a new role or edit an existing role.
Under Permissions --> Setup, the role must have the User Access Token: Full, Access Token Management: Full, and Web Services: Full permissions.
Add the role to a user under Lists --> Employees --> Employees. Select to edit an employee and add the new token role under Access --> Roles.
Navigate to Setup --> User/Roles --> Access Tokens and create a new access token. Select the application name as the integration that was created earlier, and the same user and role that were updated in the previous steps.
After creating the access token, a Token Id and Token Secret will be displayed. These map directly to the OAuthAccessToken and OAuthAccessTokenSecret. Write these down.
After creating the access token, a connection can now be made using the values obtained from the previous steps. Specify these connection properties at a minimum to connect:
AccountId specifying the account to connect to.
OAuthClientId the Consumer Key displayed when the application was created.
OAuthClientSecret the Consumer Secret displayed when the application was created.
OAuthAccessToken the Token Id when the access token was created.
OAuthAccessTokenSecret the Token Secret when the access token was created.
To support OAuth, set the AuthScheme to OAuth. NetSuite offers two forms of OAuth authentication: 1.0, and 2.0. Token Based Authentication is actually just OAuth 1.0 with the OAuthAccessToken and OAuthAccessTokenSecret created within the NetSuite UI instead of at runtime. OAuth 1.0 is available for both SuiteTalk and SuiteQL. OAuth 2.0 is only available to SuiteQL. For this reason, OAuthVersion defaults to empty, meaning that if you set Schema to SuiteTalk, OAuth 1.0 will be used, and if you set Schema to SuiteQL, OAuth 2.0 will be used. This can be overridden by explicitly setting the OAuthVersion connection property, which may be desireable if switching between SuiteTalk and SuiteQL, or for users upgrading from a previous version where only OAuth 1.0 was supported for SuiteQL.
Be aware that even though you may change the OAuthVersion, OAuth 2.0 is not available on SuiteTalk even if you set it with Schema set to SuiteTalk since the API does not support it.
Register your NetSuite app on Setup --> Integrations --> Manage Integrations. Select the checkbox for each of Token-Based Authentication and TBA: Authorization Flow for OAuthVersion 1.0 support. Check the checkboxes for Authorization Code Grant, Restlets, and Rest Web Services for OAuthVersion 2.0 and set an appropriate Redirect URI. Then, obtain the following connection properties:
OAuthClientId: Set this to the Consumer Key assigned when you registered your app.
OAuthClientSecret: Set this to the Consumer Secret assigned when you registered your app.
CallbackURL: Set this to the Redirect URI defined when you registered your app such as http://localhost:33333. Note that this must be an exact match including any trailing '/' characters.
Set Callback URL to http://localhost:portnumber and set CallbackURL to match. You can specify any port available.
NetSuite allows only a certain amount of concurrent requests per account, which is configurable per integration connection (generally defaulting to 5). If the maximum, concurrent requests are currently in use when another one is attempted to be used, an error stating "Only one request may be made against a session at a time" may be thrown on the next connection. The provider will attempt to account for this and stagger additional requests so as not to exceed the concurrent request limit. But it is not always possible to do this correctly if the account is being connected to from multiple machines or applications.
Slow NetSuite response times extend to inserts, updates, and deletes as well. This can be especially noticeable when using batch processing. When inserting, updating, or deleting multiple records at a time, it may be worthwhile to set UseAsyncServices to true.
The following are the connection properties for NetSuite_SuiteQL. Not all properties are required. Enter only property values pertaining to your installation. Several properties will be automatically initialized with the appRules defaults.
Property
Description
Authentication
CompanyId
The unique identifier of the company to access as a data source.
Password
The password for the user connecting to Dynamics GP.
URL
The URL of the Dynamics GP server.
User
The user that is authenticating to the Dynamics GP Web Services.
Caching
AutoCache
Automatically caches the results of SELECT queries into a cache database specified by either CacheLocation or both of CacheConnection and CacheProvider .
CacheConnection
The connection string for the cache database. This property is always used in conjunction with CacheProvider . Setting both properties will override the value set for CacheLocation for caching data.
CacheLocation
Specifies the path to the cache when caching to a file.
CacheMetadata
This property determines whether or not to cache the table metadata to a file store.
CacheProvider
The name of the provider to be used to cache data.
CacheTolerance
The tolerance for stale data in the cache specified in seconds when using AutoCache .
Offline
Use offline mode to get the data from the cache instead of the live source.
Firewall
FirewallPassword
A password used to authenticate to a proxy-based firewall.
FirewallPort
The TCP port for a proxy-based firewall.
FirewallServer
The name or IP address of a proxy-based firewall.
FirewallType
The protocol used by a proxy-based firewall.
FirewallUser
The user name to use to authenticate with a proxy-based firewall.
Logging
Logfile
A path to the log file.
MaxLogFileCount
A string specifying the maximum file count of log files. When the limit is hit, a new log is created in the same folder with the date and time appended to the end and the oldest log file will be deleted.
MaxLogFileSize
A string specifying the maximum size in bytes for a log file (for example, 10 MB). When the limit is hit, a new log is created in the same folder with the date and time appended to the end.
Verbosity
The verbosity level that determines the amount of detail included in the log file.
Misc
ConnectionLifeTime
The maximum lifetime of a connection in seconds. Once the time has elapsed, the connection object is disposed.
ConnectionString
***
IgnoreLookupIdErrors
A boolean indicating if errors on Ids that are looked up should be ignored.
LookupIds
A boolean indicating if ids should be looked up.
MaxRows
Limits the number of rows returned rows when no aggregation or group by is used in the query. This helps avoid performance issues at design time.
Other
These hidden properties are used only in specific use cases.
PoolIdleTimeout
The allowed idle time for a connection before it is closed.
PoolMaxSize
The maximum connections in the pool.
PoolMinSize
The minimum number of connections in the pool.
PoolWaitTime
The max seconds to wait for an available connection.
PseudoColumns
This property indicates whether or not to include pseudo columns as columns to the table.
SSLServerCert
The certificate to be accepted from the server when connecting using TLS/SSL.
SupportEnhancedSQL
This property enhances SQL functionality beyond what can be supported through the API directly, by enabling in-memory client-side processing.
Timeout
The value in seconds until the timeout error is thrown, canceling the operation.
UseConnectionPooling
This property enables connection pooling.
Proxy
ProxyAuthScheme
The authentication type to use to authenticate to the ProxyServer proxy.
ProxyAutoDetect
This indicates whether to use the system proxy settings or not. This takes precedence over other proxy settings, so you'll need to set ProxyAutoDetect to FALSE in order use custom proxy settings.
ProxyExceptions
A semicolon separated list of hosts or IPs that are exempt from connecting through the ProxyServer .
ProxyPassword
A password to be used to authenticate to the ProxyServer proxy.
ProxyPort
The TCP port the ProxyServer proxy is running on.
ProxyServer
The hostname or IP address of a proxy to route HTTP traffic through.
ProxySSLType
The SSL type to use when connecting to the ProxyServer proxy.
ProxyUser
A user name to be used to authenticate to the ProxyServer proxy.
Schema
Location
A path to the directory that contains the schema files defining tables, views, and stored procedures.
Tables
This property restricts the tables reported to a subset of the available tables. For example, Tables=TableA,TableB,TableC.
Views
Restricts the views reported to a subset of the available tables. For example, Views=ViewA,ViewB,ViewC.
1
Apply authentication only. The identities of communication partners are verified.
2
Apply integrity protection. The SAP system detects any changes or manipulation of the data exchanged.
3
Apply privacy protection. This level provides integrity and authentication. The SAP system encrypts the messages being transferred. No one but the two communication partners can read or tamper with the data. This is the maximum level of protection.
8
Apply the default protection.
9
Apply the maximum protection.
Property
Description
Authentication
Client
The client authenticating to the SAP system.
ConnectionType
The type of connection you are making.
Group
The Logon Group being used. This typically only needs to be specified when connecting to an SAP system that uses load balancing.
Host
Host name of the target system.
MessageServer
The message server must be specified when connecting to an SAP system that uses load balancing.
MessageServerService
The message server service you wish to connect to.
Password
The password used to authenticate to the SAP system.
RFCUrl
The URL of the SOAP interface to connect with SAP.
SystemId
The System Id or R3Name of the SAP System is a string with a maximum of three characters. It is often used in load balancing connections.
SystemNumber
The number by which the target system is defined. Used when setting the Host connection property.
User
The user that is authenticating to the SAP system.
X509Certificate
The X509 certificate used for login as an alternative to User , and Password .
Firewall
FirewallPassword
A password used to authenticate to a proxy-based firewall.
FirewallPort
The TCP port for a proxy-based firewall.
FirewallServer
The name or IP address of a proxy-based firewall.
FirewallType
The protocol used by a proxy-based firewall.
FirewallUser
The user name to use to authenticate with a proxy-based firewall.
Logging
Logfile
A path to the log file.
MaxLogFileCount
A string specifying the maximum file count of log files. When the limit is hit, a new log is created in the same folder with the date and time appended to the end and the oldest log file will be deleted.
MaxLogFileSize
A string specifying the maximum size in bytes for a log file (for example, 10 MB). When the limit is hit, a new log is created in the same folder with the date and time appended to the end.
Verbosity
The verbosity level that determines the amount of detail included in the log file.
Misc
Charset
The system code page used for Unicode to multibyte translations.
ConnectionLifeTime
The maximum lifetime of a connection in seconds. Once the time has elapsed, the connection object is disposed.
ConnectionString
***
Destination
Reference to an existing destination that is specified in a local saprfc.ini file.
EndianType
The endian type for the SAP server. Enter either Big or Little.
GatewayHost
The gateway host you wish to connect to.
GatewayService
The gateway service you wish to connect to.
GenerateSchemaFiles
Determines how schema files should be generated.
InitialValueMode
How to treat initial values in SAP.
Language
The language value to be used when connecting to the SAP system.
MaxRows
Limits the number of rows returned rows when no aggregation or group by is used in the query. This helps avoid performance issues at design time.
Other
These hidden properties are used only in specific use cases.
Pagesize
The number of results to return per page from SAP. Only used for SAP tables.
PoolIdleTimeout
The allowed idle time for a connection before it is closed.
PoolMaxSize
The maximum connections in the pool.
PoolMinSize
The minimum number of connections in the pool.
PoolWaitTime
The max seconds to wait for an available connection.
PseudoColumns
This property indicates whether or not to include pseudo columns as columns to the table.
QueryMode
Determines which SAP queries will be displayed as views, if any.
ReadTableFunction
The function to use for reading table data.
SSLServerCert
The certificate to be accepted from the server when connecting using TLS/SSL.
StoredProcedureFilter
A filter indicating which function modules to report as stored procedures.
SupportEnhancedSQL
This property enhances SQL functionality beyond what can be supported through the API directly, by enabling in-memory client-side processing.
TableMode
Determines which SAP tables will be displayed as views if any.
Timeout
The value in seconds until the timeout error is thrown, canceling the operation.
UseConnectionPooling
This property enables connection pooling.
UseLabels
Boolean determining if labels should be used for table and column names.
UseSimpleNames
Boolean determining if simple names should be used for tables and columns.
UseUnicodeRFC
A boolean indicating if you want to use RFC_GET_UNICODE_STRUCTURE to get structure information.
Proxy
ProxyAuthScheme
The authentication type to use to authenticate to the ProxyServer proxy.
ProxyAutoDetect
This indicates whether to use the system proxy settings or not. This takes precedence over other proxy settings, so you'll need to set ProxyAutoDetect to FALSE in order use custom proxy settings.
ProxyExceptions
A semicolon separated list of hosts or IPs that are exempt from connecting through the ProxyServer .
ProxyPassword
A password to be used to authenticate to the ProxyServer proxy.
ProxyPort
The TCP port the ProxyServer proxy is running on.
ProxyServer
The hostname or IP address of a proxy to route HTTP traffic through.
ProxySSLType
The SSL type to use when connecting to the ProxyServer proxy.
ProxyUser
A user name to be used to authenticate to the ProxyServer proxy.
Security
SNCLibPath
An optional input detailing the path and file name of the external library.
SNCMode
A boolean determining if you are using SNC. Set this to true to use SNC.
SNCName
An optional input with the name of your SNC connection.
SNCPartnerName
The application server's SNC name. This is a required input when using SNC.
SNCQop
The quality of protection for your SNC connection.
Property
Description
Authentication
Password
The password used to authenticate to the OData site.
URL
URL to the SAP Business One Service Layer root. For example, http://localhost:50000/b1s/v1.
User
The user who is authenticating to the OData site.
Firewall
FirewallPassword
A password used to authenticate to a proxy-based firewall.
FirewallPort
The TCP port for a proxy-based firewall.
FirewallServer
The name or IP address of a proxy-based firewall.
FirewallType
The protocol used by a proxy-based firewall.
FirewallUser
The user name to use to authenticate with a proxy-based firewall.
Logging
Logfile
A path to the log file.
MaxLogFileCount
A string specifying the maximum file count of log files. When the limit is hit, a new log is created in the same folder with the date and time appended to the end and the oldest log file will be deleted.
MaxLogFileSize
A string specifying the maximum size in bytes for a log file (for example, 10 MB). When the limit is hit, a new log is created in the same folder with the date and time appended to the end.
Verbosity
The verbosity level that determines the amount of detail included in the log file.
Misc
CompanyDB
Your SAP Business One company database.
ConnectionLifeTime
The maximum lifetime of a connection in seconds. Once the time has elapsed, the connection object is disposed.
ConnectionString
***
MaxRows
Limits the number of rows returned rows when no aggregation or group by is used in the query. This helps avoid performance issues at design time.
NavigationPropertiesAsViews
A boolean indicating navigation properties should be promoted to full views.
ODataVersion
The version of OData to use. By default the provider will attempt to autodetect the version.
Other
These hidden properties are used only in specific use cases.
PoolIdleTimeout
The allowed idle time for a connection before it is closed.
PoolMaxSize
The maximum connections in the pool.
PoolMinSize
The minimum number of connections in the pool.
PoolWaitTime
The max seconds to wait for an available connection.
PseudoColumns
This property indicates whether or not to include pseudo columns as columns to the table.
Readonly
You can use this property to enforce read-only access to SAP Business One from the provider.
SSLServerCert
The certificate to be accepted from the server when connecting using TLS/SSL.
SupportEnhancedSQL
This property enhances SQL functionality beyond what can be supported through the API directly, by enabling in-memory client-side processing.
Timeout
The value in seconds until the timeout error is thrown, canceling the operation.
UseConnectionPooling
This property enables connection pooling.
UseSimpleNames
Whether or not to use simple names for tables and columns.
Proxy
ProxyAuthScheme
The authentication type to use to authenticate to the ProxyServer proxy.
ProxyAutoDetect
This indicates whether to use the system proxy settings or not. This takes precedence over other proxy settings, so you'll need to set ProxyAutoDetect to FALSE in order use custom proxy settings.
ProxyExceptions
A semicolon separated list of hosts or IPs that are exempt from connecting through the ProxyServer .
ProxyPassword
A password to be used to authenticate to the ProxyServer proxy.
ProxyPort
The TCP port the ProxyServer proxy is running on.
ProxyServer
The hostname or IP address of a proxy to route HTTP traffic through.
ProxySSLType
The SSL type to use when connecting to the ProxyServer proxy.
ProxyUser
A user name to be used to authenticate to the ProxyServer proxy.
Permission
Used For
Access Token Management
Allows users to create access tokens for Token Based Authentication.
Custom <type> Fields (VIEW)
Allows users to see custom fields of the given type. Used with IncludeCustomFieldColumns.
Custom Lists (VIEW)
Allows displaying metadata for custom list tables. Used with IncludeCustomListTables.
Custom Record Types (VIEW)
Allows displaying metadata for custom record tables. Used with IncludeCustomRecordTables.
Customer (VIEW)
Deleted Records (VIEW)
Used for retrieving information on deleted records.
Log in Using Access Tokens
Allows the user to log in to REST / SOAP services with a token.
REST Web Services
SOAP Web Services
All SOAP requests including when Schema is set to SuiteTalk (default), test connection, and some requests for custom fields.
SuiteAnalytics Workbook (VIEW)
Found under Permissions -> Reports. Required for SuiteQL access.
Other Custom Fields (VIEW)
Allows users to see custom fields of the "other" type. Used with IncludeCustomFieldColumns.
User Access Token
Section
Permission
Used For (SuiteTalk Schema)
Used For (SuiteQL Schema)
Permissions => Custom Record
[Custom Record Name]
Access to the given custom record table
Access to the given custom record table
Permissions => Lists
Accounts
Access to the Account table
Access to the Account table
Permissions => Lists
Bins
Access to the Bin table
Access to the Bin table
Permissions => Lists
Calendar
Access to the CalendarEvent table along with the Events permission
Access to the CalendarEvent table along with the Events permission
Permissions => Lists
Cases
Access to the SupportCase table
Access to the SupportCase table
Permissions => Lists
Classes
Access to the Classification table
Access to the Classification table
Permissions => Lists
Contacts
Access to the Contact table
Access to the Contact table
Permissions => Lists
Currency
Access to the Currency table
Access to the Currency table
Permissions => Lists
Customers
Access to the Customer table
Access to the Customer table
Permissions => Lists
Departments
Access to the Department table
Access to the Department table
Permissions => Lists
Documents and Files
Access to the File and Folder tables
Access to the File table
Permissions => Lists
Employee Record
Access to the Employee tables
Access to the Employee table
Permissions => Lists
Events
Access to the CalendarEvent table along with the Calendars permission
Access to the CalendarEvent table along with the Calendars permission
Permissions => Lists
Items
Access to various Item tables such as DiscountItem, InventoryItem, NonInventoryItem, etc.
Access to the Item table
Permissions => Lists
Locations
Access to the Location table
Access to the Location table
Permissions => Lists
Phone Calls
Access to the PhoneCall table
Access to the PhoneCall table
Permissions => Lists
Project Tasks
Access to the ProjectTask table
Access to the ProjectTask table
Permissions => Lists
Subsidiaries
Access to the Subsidiary table
Access to the Subsidiary table
Permissions => Lists
Tasks
Access to the Task table
Access to the Task table
Permissions => Lists
Vendors
Access to the Vendor table
Access to the Vendor table
Permissions => Transactions
[Custom Transaction Name]
Access to retrieving data from the specific custom transaction via the special Transactions table
Access to retrieving data from the specific custom transaction type via the transaction table
Permissions => Transactions
Build Assemblies
Access to the AssemblyBuild table
Access the Build type from the Transaction table
Permissions => Transactions
CashSale
Access to the CashSale table
Access the CashSale type from the Transaction table
Permissions => Transactions
CashSaleRefund
Access to the CashRefund table
Access the CashRfnd type from the Transaction table
Permissions => Transactions
Charge
Access to the Charge table
Access the CardChrg type from the Transaction table
Permissions => Transactions
Check
Access to the Check table
Access the Check type from the Transaction table
Permissions => Transactions
Credit Memo
Access to the CreditMemo table
Access the Credit Memo type from the Transaction table
Permissions => Transactions
Deposit
Access to the Deposit table
Access the Deposit type from the Transaction table
Permissions => Transactions
Fulfill Orders
Access to the ItemFulfillments table
Access the Item Fulfillment type from the Transaction table
Permissions => Transactions
Invoice
Access to the Invoice table
Access the Invoice type from the Transaction table
Permissions => Transactions
Item Receipt
Access to the ItemReceipt table
Access the ItemRcpt type from the Transaction table
Permissions => Transactions
Opportunity
Access to the Opportunity table
Access the Opprtnty type from the Transaction table
Permissions => Transactions
Purchase Order
Access to the PurchaseOrder table
Access the PurchOrd type from the Transaction table
Permissions => Transactions
Sales Order
Access to the SalesOrder table
Access the SalesOrd type from the Transaction table
Permissions => Transactions
Transfer Order
Access to the TransferOrder table
Access the TrnfrOrd type from the Transaction table
Permissions => Transactions
Vendor Return Authorization
Access to the VendorReturnAuthorization table
Access the Vendor Return Authorization type from the Transaction table
Permissions => Transactions
Work Order
Access to the WorkOrder table
Access the WorkOrd type from the Transaction table
Property
Description
Authentication
AccountId
The company account your username is associated with on NetSuite.
AuthScheme
The type of authentication to use when connecting to NetSuite.
IncludeChildTables
A boolean indicating if child tables should be displayed.
NetsuiteMetadataFolder
A path to a directory to download metadata files from NetSuite. Set this for best performance.
Password
The password of the NetSuite user used to authenticate.
RoleId
The RoleId is the InternalId of the role that will be used to log in to NetSuite. Leave empty to use the user's default role.
User
The user of the NetSuite account used to authenticate.
Version
The version of the NetSuite API in usage. Defaults to 2020_2.
Caching
CacheTolerance
The tolerance for stale data in the cache specified in seconds when using AutoCache .
Firewall
FirewallPassword
A password used to authenticate to a proxy-based firewall.
FirewallPort
The TCP port for a proxy-based firewall.
FirewallServer
The name or IP address of a proxy-based firewall.
FirewallType
The protocol used by a proxy-based firewall.
FirewallUser
The user name to use to authenticate with a proxy-based firewall.
Logging
Logfile
A filepath which designates the name and location of the log file.
LogModules
Core modules to be included in the log file.
MaxLogFileCount
A string specifying the maximum file count of log files. When the limit is hit, a new log is created in the same folder with the date and time appended to the end and the oldest log file will be deleted.
MaxLogFileSize
A string specifying the maximum size in bytes for a log file (for example, 10 MB). When the limit is hit, a new log is created in the same folder with the date and time appended to the end.
Verbosity
The verbosity level that determines the amount of detail included in the log file.
Misc
AggregateColumnMode
Indicating how aggregate columns should be treated.
ApplicationId
As of version 2020.1, requests to NetSuite require an application ID.
ConnectionLifeTime
The maximum lifetime of a connection in seconds. Once the time has elapsed, the connection object is disposed.
ConnectionString
***
CustomFieldPermissions
A comma separated list of custom field permissions. Gives more control than IncludeCustomFieldColumns .
IncludeCustomFieldColumns
A boolean indicating if you would like to include custom field columns.
IncludeCustomListTables
A boolean indicating if you would like to use tables based on custom lists.
IncludeCustomRecordTables
A boolean indicating if you would like to use tables based on custom record types.
IncludeReferenceColumns
A comma separated list representing the columns to include when retrieving data from a field representing a record reference.
MaximumConcurrentSessions
The maximum number of concurrent sessions available for use in the connection.
MaxRows
Limits the number of rows returned rows when no aggregation or group by is used in the query. This helps avoid performance issues at design time.
Other
These hidden properties are used only in specific use cases.
Pagesize
The number of results to return per page from NetSuite.
PoolIdleTimeout
The allowed idle time for a connection before it is closed.
PoolMaxSize
The maximum connections in the pool.
PoolMinSize
The minimum number of connections in the pool.
PoolWaitTime
The max seconds to wait for an available connection.
PseudoColumns
This property indicates whether or not to include pseudo columns as columns to the table.
Readonly
You can use this property to enforce read-only access to NetSuite from the provider.
ReportDoublesAsDecimal
Indicates if doubles should be reported as decimal.
RequestMemorizedTransactions
A boolean indicating if you would like to request memorized transactions when retrieving transactions from NetSuite.
SSLServerCert
The certificate to be accepted from the server when connecting using TLS/SSL.
SupportEnhancedSQL
This property enhances SQL functionality beyond what can be supported through the API directly, by enabling in-memory client-side processing.
Timeout
The value in seconds until the timeout error is thrown, canceling the operation.
UseAsyncServices
A boolean indicating if you would like to use asynchronous services when inserting, updating, and deleting.
UseConnectionPooling
This property enables connection pooling.
UseInternalNamesForCustomizations
A boolean indicating if you would like to use internal names for customizations.
UserTimezoneOffset
Your user timezone offset as defined in your NetSuite preferences under Home --> Preferences --> Time Zone. Ex: -8:00.
UseSimpleNames
Boolean determining if simple names should be used for tables and columns.
UseUpserts
A boolean indicating if you would like to perform an upsert when an insert operation is used.
WebServiceHost
An optional override for the web service host such as webservices.na1.netsuite.com.
OAuth
AuthKey
The authentication secret used to request and obtain the OAuth Access Token.
AuthToken
The authentication token used to request and obtain the OAuth Access Token.
CallbackURL
The OAuth callback URL to return to when authenticating. This value must match the callback URL you specify in your app settings.
InitiateOAuth
Set this property to initiate the process to obtain or refresh the OAuth access token when you connect.
OAuthAccessToken
The access token for connecting using OAuth.
OAuthAccessTokenSecret
The OAuth access token secret for connecting using OAuth.
OAuthClientId
The client ID assigned when you register your application with an OAuth authorization server.
OAuthClientSecret
The client secret assigned when you register your application with an OAuth authorization server.
OAuthExpiresIn
The lifetime in seconds of the OAuth AccessToken.
OAuthSettingsLocation
The location of the settings file where OAuth values are saved when InitiateOAuth is set to GETANDREFRESH or REFRESH. Alternatively, this can be held in memory by specifying a value starting with memory://.
OAuthTokenTimestamp
The Unix epoch timestamp in milliseconds when the current Access Token was created.
OAuthVerifier
The verifier code returned from the OAuth authorization URL.
Proxy
ProxyAuthScheme
The authentication type to use to authenticate to the ProxyServer proxy.
ProxyAutoDetect
This indicates whether to use the system proxy settings or not. This takes precedence over other proxy settings, so you'll need to set ProxyAutoDetect to FALSE in order use custom proxy settings.
ProxyExceptions
A semicolon separated list of destination hostnames or IPs that are exempt from connecting through the ProxyServer .
ProxyPassword
A password to be used to authenticate to the ProxyServer proxy.
ProxyPort
The TCP port the ProxyServer proxy is running on.
ProxyServer
The hostname or IP address of a proxy to route HTTP traffic through.
ProxySSLType
The SSL type to use when connecting to the ProxyServer proxy.
ProxyUser
A user name to be used to authenticate to the ProxyServer proxy.
Schema
Schema
The type of schema to use.
Property
Description
Authentication
AuthScheme
The scheme used for authentication. Accepted entries are NTLM, Basic, Digest, None, or Negotiate. Negotiate is the default option.
Company
The company to submit queries against. For example, 'CRONUS Canada, Inc.'.
Password
The password used to authenticate the user.
ServerInstance
The instance of the Dynamics NAV server. For example, DynamicsNAV71.
URL
URL to the DynamicsNAV server organization root. For example, http://MyServer:7048.
User
The DynamicsNAV user account used to authenticate.
Caching
CacheTolerance
The tolerance for stale data in the cache specified in seconds when using AutoCache .
Firewall
FirewallPassword
A password used to authenticate to a proxy-based firewall.
FirewallPort
The TCP port for a proxy-based firewall.
FirewallServer
The name or IP address of a proxy-based firewall.
FirewallType
The protocol used by a proxy-based firewall.
FirewallUser
The user name to use to authenticate with a proxy-based firewall.
Logging
Logfile
A filepath which designates the name and location of the log file.
LogModules
Core modules to be included in the log file.
MaxLogFileCount
A string specifying the maximum file count of log files. When the limit is hit, a new log is created in the same folder with the date and time appended to the end and the oldest log file will be deleted.
MaxLogFileSize
A string specifying the maximum size in bytes for a log file (for example, 10 MB). When the limit is hit, a new log is created in the same folder with the date and time appended to the end.
Verbosity
The verbosity level that determines the amount of detail included in the log file.
Misc
ConnectionLifeTime
The maximum lifetime of a connection in seconds. Once the time has elapsed, the connection object is disposed.
ConnectionString
***
ContinueOnError
Whether or not to continue after encountering an error on a batch request.
MaxRows
Limits the number of rows returned rows when no aggregation or group by is used in the query. This helps avoid performance issues at design time.
Other
These hidden properties are used only in specific use cases.
PoolIdleTimeout
The allowed idle time for a connection before it is closed.
PoolMaxSize
The maximum connections in the pool.
PoolMinSize
The minimum number of connections in the pool.
PoolWaitTime
The max seconds to wait for an available connection.
PseudoColumns
This property indicates whether or not to include pseudo columns as columns to the table.
Readonly
You can use this property to enforce read-only access to DynamicsNAV from the provider.
SSLServerCert
The certificate to be accepted from the server when connecting using TLS/SSL.
SupportEnhancedSQL
This property enhances SQL functionality beyond what can be supported through the API directly, by enabling in-memory client-side processing.
Tenant
Use this value to connect to a specific Tenant in a multitenant installation of DynamicsNAV.
Timeout
The value in seconds until the timeout error is thrown, canceling the operation.
UseConnectionPooling
This property enables connection pooling.
Proxy
ProxyAuthScheme
The authentication type to use to authenticate to the ProxyServer proxy.
ProxyAutoDetect
This indicates whether to use the system proxy settings or not. This takes precedence over other proxy settings, so you'll need to set ProxyAutoDetect to FALSE in order use custom proxy settings.
ProxyExceptions
A semicolon separated list of destination hostnames or IPs that are exempt from connecting through the ProxyServer .
ProxyPassword
A password to be used to authenticate to the ProxyServer proxy.
ProxyPort
The TCP port the ProxyServer proxy is running on.
ProxyServer
The hostname or IP address of a proxy to route HTTP traffic through.
ProxySSLType
The SSL type to use when connecting to the ProxyServer proxy.
ProxyUser
A user name to be used to authenticate to the ProxyServer proxy.