Mac addresses can be spoofed, so they should never be relied upon solely for security anyway. Also, two users could potentially use the same machine at different times. You should always use individual authentication to uniquely identify users. Device ID or IP Address restrictions should only be a secondary layer of security or access control.

Hi Scott How to get device id, i have seen this in integration under setup tab and cannot go with IP address as per.

@suryaprakash598 I am not sure that will help you. I have never used the Device ID feature, but my understanding is that it is for user logins to Netsuite. Integration authentications, such as those used by Restlets, can only use token-based authentication, or username/password with the custom NLAuth authentication. Suitelets don't support authentication at all, the user already has to be logged in to Netsuite, with a valid JSESSIONID in their cookies, in order to access a Suitelet page. However, with both script types you can limit the audience to specific roles, users, and subsidiaries, which should give you very good control. Is there some additional restriction you need to impose beyond users and roles? What are you trying to accomplish?

Thank you Scott I am trying to restrict users login from specific devices not other devices

According to SuiteAnswers, Device ID restrictions are only used for the suite Commerce InStore (SCIS) SuiteApp, and apply to point of sale devices, and only for the custom role set up by the SCIS app. This is probably not what you are looking for. I think IP address rules / restrictions are the only supported option. You can require SSO (single sign-on) and use that to manage logins outside of Netsuite. Once SSO is working, you can disable direct NetSuite login for users. However, be aware that Administrators and certain highly-privileged roles cannot be prevented from direct login.