The Create External Client CredStore task enables external apps and orchestrations to store OAuth2 access and refresh tokens in the Workday credential store.
To create External Client CredStore for Hyland for Workday Financial Management:
- Log in to Workday Tenant.
- Search for the Create External Client CredStore task.
-
Provide the following information and click OK.
Field Value App ID HFW-FIN-App_fzlxvg External Reference ID HyIdpAuthCode Note: This value cannot be changed.Auth Scheme for External Client OAuth 2.0 Authorization Code Client ID Valid IDP Client Id supporting Authorization Code Client Secret Client Secret of the above Client Id Authorization Endpoint This can be in the format https://<iis-host>/<Hyland IdP Virtual Directory Name>/connect/authorize.
For example, https://example.com/identityprovider/authorize
Token Endpoint This can be in the format https://<iis-host>/<Hyland Idp Virtual Directory Name>/connect/token. For example, https://example.com/identityprovider/connect/token
Scope openid hcmisbe group For details of the Hyland Identity Service client configuration related to Client ID, refer to the following table.
Field Value Client Name workday-extend-financials Client Description workday-extend-financials Protocol Type oidc Redirect Urls https://cb.myworkday.com/cb1 Allowed Grant Types Authorization Code Allowed Scopes openid hcmisbe group Post Logout Redirect URLs https://<hostname>/identityprovider Client Secret must be present Selected Allow users to log in locally Unchecked For details related to the Client Secret, refer to the following table.
Field Value Value <Secret>, where <Secret> is the Client Secret of the Hyland Identity Provider Client Expiration Select the Expiration Date Type Shared Secret