Workday Groups and Roles
Manage Access to Workday Groups and Roles
Opal’s integration with Workday allows administrators to view and manage user access to Workday entities such as User Security Groups and Organization Roles, which are typically tied to Domain Security Policies and Role Based Security Groups respectively.
Step 1 - In Workday, Add additional Domain Security Policy Permissions
Navigate to the Workday Search bar, enter Maintain Permissions for Security Group, and select the corresponding Task
In the task modal, first set the Operation to Maintain and set the Source Security Group to the Security Group you created in Step 2 of Getting Started.
Then, edit the Domain Security Policy Permissions and add the following operations:
| View/Modify Access | Domain Security Policy |
|---|---|
| GET and PUT | User-Based Security Group Administration |
| GET ONLY | Manage: Organization Roles |
| GET ONLY | Manage: Organization Integration |
| GET ONLY | Security Administration |
Step 2 - In Workday, Edit Business Security Policy
Navigate to the Workday Search bar, enter Edit Business Security Policy, and select the corresponding Task.
In the task modal, set Business Process Type to Assign Roles.
Then, add the Security Group you created in Step 2 of Getting Started to Assign Roles (Web Service)
Step 3 - In Workday, Activate All Pending Authentication Policy Changes
Navigate to the Workday Search bar, enter Activate All Pending Authentication Policy Changes, and select the corresponding Task.
Add any comments, review, and check the Confirm box to activate the Authentication Policy Changes
Step 4 - In Opal, Import Workday Items
Import User Based Security Groups and Organization Roles that you want to manage.
Updated 12 days ago