Search
Updated on November 24, 2023

Workday

Estimated reading: 3 minutes 949 views

Set up Workday for automated tests with TrustCloud!

Purpose

Once you set up your compliance program, TrustCloud TrustOps works to ensure that your systems remain compliant with your adopted controls. To do so, TrustCloud runs automated tests against systems in your product and business stack and verifies that they are properly configured.

This document outlines the steps you can take to grant TrustCloud access to only read metadata about the configuration settings for your Workday account so that TrustOps can validate and generate evidence for your compliance program.

Instructions to grant TrustCloud limited access to Workday

  1. Go to ‘Create Security Group’ in Workday and create an ‘Integration System Security Group’.
  2. Grant permissions to your newly created security group. For each domain, to grant access,
    1. Go to the ‘View Domain’ report and find the domains listed below
    2. Click on ‘Domain’ and then click on ’Edit Security Policy Permissions’.
    3. Add the security group, and grant permissions for GET.
    4. Required domains for the Workday HRIS integration:
      1. Worker Data: Workers
      2. Worker Data: All Positions
      3. Worker Data: Current Staffing Information
      4. Worker Data: Employment Data
      5. Worker Data: Organization Information
    5. Additionally, grant access to the following security policies:
      1. Integration Build
      2. Integration Process
      3. Integration Debug
      4. Integration Event
    6. Activate these permissions by clicking ‘Activate Pending Security Policy Changes’.
    7. Go to ‘Create Integration System User (ISU)’ and configure a Workday user to integrate Workday with TrustOps.
    8. Set the ‘Session Timeout Minutes’ to 0 to prevent session expiration.
    9. Go to ‘Maintain Password Rules’ and add the ISU to the ‘System Users’ exempt from a password expiration.
    10. Optionally, enable the ‘Do Not Allow UI Sessions’ checkbox to block the ISU from logging in through the Workday UI.
    11. After creating the ‘Integration System User’, click on ‘Security Profile’ and  click on “Assign Integration System Security Groups”.
    12. Select the security group you created previously, go to ‘View Integration System Report’, and access the ‘Connector’ or ‘Studio integration’.
    13. Go to Workday Account. Click on ‘Edit’ and select ‘Integration System User’.
    14. Copy the username and password for future reference.
    15. Retrieve the Tenant ID. It can be found in the URL when you are logged into Workday. For example, if the URL of your Workday UI is https://impl.workday.com/sample_company/d/home.html, your tenant ID is sample_company.
    16. Retrieve the Workday WSDL URL that is used as the base URL for every API request. The WSDL URL can be found here: https://community.workday.com/articles/6120#endpoint. If you are unsure, then use https://wd2-impl-services1.workday.com/ccx/service/.
    17. Provide the user name, Password, Tenant ID, and Workday WSDL URL into TrustOps.

Additional Information

For additional details, you can refer to the API Deck Workday Integration guide.

Join the conversation

ON THIS PAGE
SHARE THIS PAGE

SUBSCRIBE
FlightSchool
Trusty

Want to see how to turn GRC into a profit center?

Ready to save time and money on audits, pass security reviews faster, and manage enterprise-wide risk? Let’s talk! 

Learn More
TrustCommunity

The #1 Community for Security, Privacy, and GRC Professionals.

© 2024 TrustCloud Corporation. All rights reserved.
TrustCloud® and TrustOps® are registered trademarks of TrustCloud Corporation.

Facebook Linkedin Youtube Rss

Resources

Platform

TOPICS

ABOUT US

AICPA
Monitored by TrustCloud

💛 Joyfully Crafted to Elevate GRC Leaders into Trust Champions.

OR