Steps to configure SAML SSO for NetSuite

About NetSuite

NetSuite is a cloud-based enterprise resource planning (ERP) software suite that provides organizations with a full suite of applications to run their businesses efficiently and accelerate growth.

MFA configuration: Upon successful SSO configuration for the application, click here to learn how to set up MFA, ensuring users complete multiple verification methods before accessing the Identity360 portal.

The following steps will help you enable single sign-on (SSO) for NetSuite from Identity360.

Prerequisites

  1. The MFA and SSO license for Identity360 is required to enable SSO for enterprise applications. For more information, refer to pricing details.
  2. Log in to Identity360 as an Admin or Super Admin.
  3. Navigate to Applications > Application Integration > Create New Application, and select NetSuite from the applications displayed.
    Note: You can also find NetSuite from the search bar located at the top.
  4. Under the General Settings tab, enter the Application Name and Description.
  5. Under Choose Capabilities tab, choose SSO and click Continue.
    Identity360 application configuration general settingsGeneral settings of SSO configuration for NetSuite
  6. Under Integration Settings, navigate to the Single Sign On tab, select SAML from the Method drop-down, and click Metadata Details.
    • Copy the Logout URL value, which will be used later during the configuration of NetSuite.
    • Download the metadata file to be uploaded during the configuration of NetSuite by clicking Download from the Metadata field.
      Identity360 application configuration integration settingsIntegration Settings of SSO configuration for NetSuite

NetSuite (service provider) configuration steps

  1. Sign on to NetSuite with your user credentials.
  2. Go to Setup > Company > Enable Features.
  3. Select SuiteCloud from the Enable Features menu.
  4. Scroll down to the Manage Authentication section.
  5. Check SAML SINGLE SIGN-ON.
  6. Click Save.
  7. On the top menu, select Setup > Users/Roles, then click Manage Roles.
  8. The Manage Roles section that contains a list of all the roles assigned in your organization will open. Select Edit for a role for which you want to enable SAML.
  9. Scroll down to the Permissions tab and select Setup.
  10. Select the SAML Single Sign-on option, and ensure that the granted permissions are set to Full, and then select Add.
  11. Click Save.
    Note: Assign the above permission only to roles that need the ability to utilize the SAML SSO connection (for example, admin roles).
  12. Go back to Setup > Integration > SAML Single Sign-on.
  13. The SAML Setup page opens. Enter the following:
    • LOGOUT LANDING PAGE: Paste the Logout URL that you copied in step 6(i) of prerequisites.
    • Enable the PRIMARY AUTHENTICATION METHOD box to redirect users to the Identity360 login page.
    • UPLOAD IDP METADATA FILE: Select UPLOAD IDP METADATA FILE, then select Choose File to locate and upload the metadata file downloaded in step 6(ii) of prerequisites.
  14. Click Submit.

Identity360 (identity provider) configuration steps

  1. Switch to Identity360's application configuration page.
  2. Enter the Relay State parameter, if necessary.
    Note: Relay State is an optional parameter used with an SAML message to remember where you were or direct you to a specific page after logging in.
  3. In the Sub Domain field, enter the subdomain name of your NetSuite account. For example, if your NetSuite URL is https://zilliumcorp.netsuite.net, then zilliumcorp is the subdomain.
  4. Click Save.
    Identity360 application configurationIntegration Settings of SSO configuration for NetSuite
  5. To learn how to assign users to one or more applications, refer to this page.

Your users should now be able to sign in to NetSuite through the Identity360 portal.

Note: For NetSuite, both SP-initiated and IdP-initiated flows are supported.

Don't see what you're looking for?

  •  

    Visit our community  

    Post your questions in the forum.

     
  •  

    Request additional resources  

    Send us your requirements.