Workday
Connect Workday to Doozy via Merge.
Step 1: Create an Integration System User (ISU)
In your Workday portal, log into the 'Workday tenant'.
In the Search field, type 'Create Integration System User'.
Select the 'Create Integration System User' task.
On the 'Create Integration System User' page, in the 'Account Information' section, enter a user name, and enter and confirm a password.
Click 'OK'.
Step 2: Create a Security Group and Assign an Integration System User
Now, add this Integration System User to a Security Group:In the 'Search' field, type 'Create Security Group'.
Select the 'Create Security Group' task.
Click 'OK'.
On the 'Create Security Group' page, from the 'Type of Tenanted Security Group' pull-down menu, select 'Integration System Security Group (Unconstrained)'.
In the Name field, enter a name.
Click 'OK'.
On the 'Edit Integration System Security Group (Unconstrained)'' page, in the 'Name' field, enter the same name you entered when creating the ISU in the first section.
Click 'OK'.
Step 3: Configure Domain Security Policy Permissions
In the 'Search' field, type 'Maintain Permissions for Security Group'.
Make sure the 'Operation' is Maintain, and the 'Source Security Group' is the same as the security group that was assigned in Step 2.
Add the corresponding 'Domain Security Policy' with GET operation:.
In the 'Search' field, type 'Maintain Permissions for Security Group'.
Permissions
Permissions
Step 4: Activate Security Policy Changes
In the search bar, type 'Activate Pending Security Policy Changes' to view a summary of the changes in the security policy that need to be approved.
Add any relevant comments on the window that pops up.
'Confirm' the changes in order to accept the changes that are being made. .
Step 5: Validate Authentication Policy is Sufficient
Check the Manage Authentication Policies section to ensure the ISU you created is added to a policy that can access the necessary domains. It should not be restricted to only the “SAML” Allowed Authentication Types – if this is the case, you can create a new Authentication Policy with a “User Name Password” Allowed Authentication Type.Editing 'Authentication Policies'.
Create an Authentication Rule, and add the Security Group to the Rule.
Make sure the 'Allowed Authentication Types' is set to specific User Name Password or set to Any.
Step 6: Activate All Pending Authentication Policy Changes
In the search bar, type 'Activate All Pending Authentication Policy Changes'.
Proceed to the next screen, and confirm the changes. This will save the Authentication Policy that was just created.
Make sure the 'Allowed Authentication Types' is set to specific User Name Password or set to Any.
Step 7: Obtain the Web Services Endpoint for Workday Tenant
We’ll need access to your specific Workday web services endpoint:Search in Workday for 'Public Web Services'.
Open Public Web Services Report.
Hover over 'Human resources' and click the three dots to access the menu. If you are integrating with your Workday ATS, please find 'Recruiting' instead and access that menu.
Navigate to the bottom of the page that opens and you'll find the 'host'.
Copy everything until you see /service. This should look something like: (https://wd5-services1.myworkday.com/ccx)
Enter Credentials into Doozy
🖥️ Now go to our web app, doozy.live, and sign into your account.Choose Workday as the HRIS you want to connect.
Workday URL: Enter the Web Services Endpoint you found from Step 5 into Merge Link.
User ID: Enter the Integration System User name for the user created in Step 1.
Password: Enter the Integration System User password for the user created in Step 1.
Workday Tenant Name: Enter your Workday Tenant name. Example: If you sign in at 'https://wd5-services1.workday.com/acme', enter 'acme'.
Notes
- Linked Implementation Workday accounts will result in slower syncs as there are fewer resources dedicated to the tenant.
- The password used cannot contain an ’&’, ’<’, or ’>’ sign.
- Please make sure to exempt the ISU Account from MFA and SSO