asking again for today’s experts 🙂 If you have a user/employee with access (password) set up on Sandbox only, and you refresh the Sandbox and recreate the employee record on that Sandbox, is their previous password lost, or is it preserved somewhere so that once GIVE ACCESS is ticked and a role is granted, it will just start working again without them having to create a password again?

I would think it would be a start over situation (add employee + new password), since the refresh takes a copy of your prod account & emp does not exist

Netsuite uses a global access table for user authentication, that means an user can have same credentials for multiple instances. Since you have removed the user (refresh) his/her credential also gets wiped from the global access table since that was the only instance user had access too. This access schema is there so that an user can have access to multiple instances, great for consultants, netsuite support etc. There is a caveat about this too, this table also manages vendor, partner and customer portal access. Suppose an ERP user also have access to customer portal from their vendor and somehow table get corrupted, some cases even admins cannot reset the user credentials in NS itself unless user get removed from all the instances all together, what a bummer 🤣netsuite

when you remove the user (refresh) technically you are removing the access and user record. I am pretty sure about this similar thing happened to me while back. One option though you can add those user to refreshed sand box and give them access via CSV update, just define a generic password and check the chnage password up on first login" field. Should save you some elbow grease LOL