Accounting or ERP systems are the financial backbone of a company. It records every inflow and outflow of money. It is crucial to maintain this ledger in excellent condition in order to accurately represent a company’s financial health and perform crucial actions, like paying taxes.
It is important to connect your accounting system to BRM to have a complete picture of all your spend. Most companies pay for tools and services via credit cards, ACH, wires, etc. across a variety of different systems (corporate card, bill pay). BRM can surface everything once you hook up accounting.
Netsuite - Token-Based Authentication
What access does BRM need?
In layman terms, BRM needs view access to your NetSuite’s expense data -- what vendors you are paying, how often, and how much.
Specifically, this translates to read access to accounts, contacts, expense transactions (bill payments, direct expenses) and the web API.
Cool, but what can BRM do in our system?
BRM can pull in your expense data and enrich it with other data sources (e.g. agreements, user activity data, HR, etc.) BRM cannot make any changes in your NetSuite (write access). It will not be able to change any data (e.g. create bills, make journal entries). Access is entirely constrained to view access.
Can BRM change the perms it has access to?
You, as the NetSuite admin, are fully in control with what permissions to provide to BRM. BRM will provide you the list of permissions required for BRM to work properly (only read access).
BRM’s access will never expand or change without you as the NetSuite admin changing the perms it provides BRM.
Does BRM have access to our login credentials?
BRM never reads or stores your NetSuite login credentials (user/password). That information is never provided to BRM and BRM will never be able to login to your NetSuite instance.
So how does granting permission work?
You will effectively create a virtual role and provide that specific role a list of permissions it has access to. This role can be accessed by BRM via a “token” which is similar to a password for computer systems. This token will only ever have access to the provisioned role and the permissions granted to that role.
Can BRM see our revenue and transactional data?
NO. BRM only needs access to transactional data classified as expenses, bills, and bill payments. Reading revenue data is not in the list of perms that BRM will ask for.