Using Single Sign-On with NetSuite Analytics Warehouse

You can use single sign-on (SSO) to go from NetSuite to your NetSuite Analytics Warehouse instance without having to enter the Oracle Analytics for Applications (OAX) login credentials. To enable users to do this, you must:

• Have an account with an SSO service that uses Security Assertion Markup Language (SAML) or OpenID Connect (OIDC).

• Have the NSAW Administrator role assigned.

• Have set up the initial data transfer.

Note:

All users accessing NetSuite Analytics Warehouse by SSO need to be added first to the SSO network (SAML or OIDC). If you would like to allow external users to log in to NetSuite Analytics Warehouse by using their login credentials, you need to request this possibility to Technical Support before setting up SSO for NetSuite Analytics Warehouse. For more information about contacting Technical Support, see Technical Support.

Setting up SAML SSO for NetSuite Analytics Warehouse

You can enable users to access their instance of NetSuite Analytics Warehouse by using SAML SSO. For more information about SAML SSO, see SAML Single Sign-on.

To set up SAML SSO for NetSuite Analytics Warehouse:

1. Configure the authenticator app OKTA Verify and get the IdP metadata file.

2. Verify that the users have been created both in OKTA and IDCS with the same email address. For more information, see Managing Users, Groups, and Access.

3. Access the NetSuite Analytics Warehouse home page. For more information, see NetSuite Analytics Warehouse Basics.

4. Open the NetSuite Analytics Warehouse Navigator menu and select Console.

5. In the Service Administration section, select Authentication.

6. In the NetSuite Analytics Warehouse Authentication section, select Enable SSO.

7. Select SAML as an IdP type to use.

8. Upload the IdP metadata file you saved in step 1.

9. Click Save.

Setting up OIDC SSO for NetSuite Analytics Warehouse

You can enable users to access their instance of NetSuite Analytics Warehouse by using OIDC SSO. For more information about OIDC SSO, see OpenID Connect (OIDC) Single Sign-on.

You need to create an integration record and then set up OIDC SSO for NetSuite Analytics Warehouse.

Note:

Only users assigned the Administrator role can create an integration record.

To create an integration record:

1. Go to the NetSuite Analytics Warehouse login page. For more information, see NetSuite Analytics Warehouse Basics.

2. Copy the login page URL from https:// up until oraclecloud.com. For example, https://idcs-39681a0d2c9d40e486d5cbfec8e8aaab.identity.oraclecloud.com. This is your IDCS tenant base URL.

3. Form a new URI following this format: <IDCS tenant base URL>/oauth2/v1/social/callback. Replace <IDCS tenant base URL> with the URL you have copied in step 2. This is your redirect URI. Save it to use it later on in the creation of the integration record.

4. Go to Setup > Integration > Manage Integrations > New. For more information, see Creating an Integration Record.

5. Enter a name for the integration record.

6. Clear the TBA: Authorization Flow and Token-based Authentication boxes.

7. In the Redirect URI field, paste the redirect URI you have created in step 3.

8. Click Save.

   Important:

   Do not close this page until you have completed all steps to set up OIDC SSO for NetSuite Analytics Warehouse. You need information in this page to complete the setup.

To set up OIDC SSO for NetSuite Analytics Warehouse:

1. Access the NetSuite Analytics Warehouse home page using another browser or tab.

2. Open the NetSuite Analytics Warehouse Navigator menu and select Console. For more information, see NetSuite Analytics Warehouse Basics.

3. In the Service Administration section, select Authentication.

4. In the NetSuite Analytics Warehouse Authentication section, select Enable SSO as an authentication method to use.

5. Select OIDC (OpenID Connect) as an IdP type to use.

6. In the Authentication System Settings section, enter the following information:

   • On the integration record page, copy the Consumer Key / Client ID code and paste it in the Client ID field.

   • On the integration record page, copy the Consumer Secret / Client Secret code and paste it in the Client Secret field.

   • Go to Setup > Integration > NetSuite as OIDC Provider Setup and copy the Metadata URL. Paste it in the Discovery service URL field.

7. Click Save.

8. In NetSuite, go to Setup > Integration > NetSuite as OIDC Provider Setup.

9. Click the integration record.

10. Click the tab Entities and select the employees you want to enable the SSO access to in the Employees field and move them to the Selected Employees field.

11. Click the tab Roles and select the roles you want to enable the SSO access to in the Roles box and move them to the Selected Roles box.

12. Click Save.

Related Topics

Setting Up NetSuite Analytics Warehouse

NetSuite Analytics Warehouse Basics

NetSuite Analytics Warehouse Overview

General Notices