It depends upon how you want to use it. We use it with SQL Server, defining a Linked Server that makes use of the ODBC connection to NetSuite. We then use either our local AD or SQL Server permission to control who can access the Linked Server. However, everyone who has access to that linked server gets the same effective access, since they are being authenticated to NetSuite using a single role. We use multiple roles and a separate ODBC profile & linked server for each role to establish different kinds of access. Keep in mind, regardless of the role used, all ODBC access is read-only.