Restricting Access to Records by Class

If your account has the Classes feature enabled, you can limit access to transaction, employee, partner, and optionally item records based on their class values. You can also limit which classes users can assign to these records. You can set class restrictions by user role and apply them to everyone using that role.

Important:

Any account in the Chart of Accounts list without an assigned class isn't subject to the own, subordinate, and unassigned or own and subordinates only restrictions.

The following settings for the Class Restrictions field on the Role page define class-related restrictions for transaction and customer records:

Check the Allow Viewing box to let users logged in with this role see, but not edit, records for classes they don't have access to.

Check the Apply to Items box to add these class restrictions to item records, in addition to transaction and customer records.

To set up a role with these restrictions, go to Setup > Users/Roles > Manage Roles and click Customize, Edit, or New.

Important:

In NetSuite OneWorld, subsidiary restrictions automatically apply to classes. For example, if Class A is assigned to only Subsidiary X and a role is restricted to Subsidiary X, users with that role can access only Class A, even if the role doesn't have class restrictions.

Important:

If you're using the Advanced Employee Permissions feature, restrictions on the Role page apply only to Employees and Employee Administration permissions. Employee Public and Employee Confidential permissions ignore the restrictions on this page. For more information, see Setting Employee Access for Advanced Employee Permissions.

You can also apply role-based class restrictions to custom records. For more information, see Applying Role-Based Restrictions to Custom Records.

Related Topics

General Notices