OAuth 2.0 Authentication

This section provides the details of the required permissions for the OAuth 2.0 Authentication Type:

Create the API Client.

For more information on API Client creation, refer to Create the API Client for Integration.
The Workday Account used for the API Client to generate a refresh token must be an integration user and must have all the permissions as described in Basic Authentication.
Add one of the following functional areas under the API Client Integration used for OAuth 2.0:
- Staffing
- System
- Contact Information
- Personal Data
- Integration
- Organization and Roles
Provide access to the Integration Security Group for the Workday Query Language Domain in the System Functional Area. For more information, refer to Set Permissions to Workday Query Language Domain.
Provide access to Integration Security Group to the Worker data source. For more information, refer to Set Permissions to the Worker Data Source.

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

OAuth 2.0 Authentication

Documentation Feedback