Workday

Workday is a provider of cloud-based software that specializes in applications for enterprise resource planning (ERP) and human capital management (HCM). DataBee integrates with Workday for the purpose of building the organization hierarchy, which is used in other views.

Integration Method: API

Tables: User Inventory, Authentication, Web Resource Activity

This integration has been tested against the Workday staffing API version v6 and common API version v1.  

Prerequisites

1. Admin access to Workday to create an integration system user, register an API client and add permissions

2. Admin access to DataBee console to add new feed

Configuration Overview

1. Workday

   1. Create an Integration System User (ISU) in Workday

   2. Register an API Client for Integrations associated with the ISU in Workday to get the Client ID, Client Secret and Refresh Tokens

   3. Create a Security Group, assign permissions and add ISU as member

2. DataBee: Create a new Workday feed and add API tokens

Parameter Mapping

Workday Configuration

Step 1: Create Integration System User

1. Login to Workday as an admin and search for “Create Integration System User”

2. In the dialog box, fill in required fields of the form and click OK

Step 2: Registering API Client for Integrations

1. Search for “Register API Client for Integrations”

2. In the dialog box, enter the required fields of the form

   1. Name

   2. Non-Expiring Refresh Tokens: SELECT

   3. Disabled: UNSELECT

   4. Scope: Add the following

      1. Implementation

      2. Integration

      3. System

      4. Tenant Non-Configurable

   5. Include Workday Owned Scope: SELECT

Workday API Client ID & Secret

3. Click OK and save the Client ID and Client Secret

Workday API URLs

4. Record the datacenter and tenant name

5. Search for “View API Clients” in Workday

6. Under the API Clients for Integrations  tab, select the newly registered API client above.

7. From “Related Actions”, select ‘API Client’ > ‘Manage Refresh Tokens for Integrations’

8. In the Workday Account field, select the newly created integration user (Task 1) and click OK

Workday Refresh Token For Integrations

9. Check Generate New Refresh Token and click OK.

10. Copy and save the generated Refresh Token

11. At this point, you will have the Refresh Token, Client ID and Client Secret.

Step 3: Editing Security Policy

1. Search for “Create Security Group”

2. Fill in the fields:

   1. Type of Tenanted Security Group: Integration System Security Group (Unconstrained)

   2. Name: assign a name

3. Select the newly created Integration System User (Task 1)

4. From ‘Related Actions’, select Security Group > Maintain Domain Permissions for Security Group

5. Add the following Get and View permissions to the group

6. Activate the Security Policy Changes

DataBee Configuration 

1. Log into the DataBee console, navigate to the Data>Data source tab and click the Add New Data Source button

2. Search for Workday and click it  

3. Click on the API Ingest option for the collection method. 

4. Provide contact information for the Workday source, and click Next 

DataBee Feed Configuration

5. In the configuration dialog, enter the following:

   1. Select the event type and enter the tenant name.

   2. Refresh Token: Paste the Workday Refresh Token

   3. Client Key: Paste Workday Client ID

   4. Client Secret: Paste Workday Client Secret

   5. Token URL: Replace the <tenant> placeholder

   6. API URL: Ensure the datacenter in the API Base URL matches Workday REST endpoint

6. Click Submit