Product Backlog Item 2534265: SaaS App Tutorial: Workday Update

v-hgampala · v-hgampala · commit 07e2d69834cd · 2023-04-18T12:53:04.000+05:30
diff --git a/articles/active-directory/saas-apps/workday-tutorial.md b/articles/active-directory/saas-apps/workday-tutorial.md
@@ -9,7 +9,7 @@ ms.service: active-directory
 ms.subservice: saas-app-tutorial
 ms.workload: identity
 ms.topic: tutorial
-ms.date: 11/21/2022
+ms.date: 04/18/2023
 ms.author: jeedes
 ---
 
@@ -73,7 +73,7 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
 1. On the **Select a Single sign-on method** page, select **SAML**.
 1. On the **Set up Single Sign-On with SAML** page, click the pencil icon for **Basic SAML Configuration** to edit the settings.
 
-   ![Edit Basic SAML Configuration](common/edit-urls.png)
+   ![Screenshot of showing Edit Basic SAML Configuration.](common/edit-urls.png)
 
 1. On the **Basic SAML Configuration** page, enter the values for the following fields:
 
@@ -99,21 +99,21 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
 
 1. On the **Set up Single Sign-On with SAML** page, in the **SAML Signing Certificate** section, find **Federation Metadata XML** and select **Download** to download the certificate and save it on your computer.
 
-   ![The Certificate download link](common/metadataxml.png)
+   ![Screenshot of showing The Certificate download link.](common/metadataxml.png)
 
 1. To modify the **Signing** options as per your requirement, click **Edit** button to open **SAML Signing Certificate** dialog.
 
-	![Certificate](common/edit-certificate.png) 
-
-	![SAML Signing Certificate](./media/workday-tutorial/signing-option.png)
+	![Screenshot of showing Certificate.](common/edit-certificate.png) 
 
 	a. Select **Sign SAML response and assertion** for **Signing Option**.
 
+    ![Screenshot of showing SAML Signing Certificate.](./media/workday-tutorial/signing-option.png)
+
 	b. Click **Save**
 
 1. On the **Set up Workday** section, copy the appropriate URL(s) based on your requirement.
 
-   ![Copy configuration URLs](common/copy-configuration-urls.png)
+   ![Screenshot of showing Copy configuration URLs.](common/copy-configuration-urls.png)
 
 ### Create an Azure AD test user
 
@@ -145,28 +145,28 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 
 1. In the **Search box**, search with the name **Edit Tenant Setup – Security** on the top left side of the home page.
 
-    ![Edit Tenant Security](./media/workday-tutorial/search-box.png "Edit Tenant Security")
+    ![Screenshot of showing Edit Tenant Security.](./media/workday-tutorial/search-box.png "Edit Tenant Security")
 
 
 1. In the **SAML Setup** section, click on **Import Identity Provider**.
 
-    ![SAML Setup](./media/workday-tutorial/saml-setup.png "SAML Setup")
+    ![Screenshot of showing SAML Setup.](./media/workday-tutorial/saml-setup.png "SAML Setup")
 
 1. In **Import Identity Provider** section, perform the below steps:
 
-    ![Importing Identity Provider](./media/workday-tutorial/import-identity-provider.png)
+    ![Screenshot of showing Importing Identity Provider.](./media/workday-tutorial/import-identity-provider.png)
 
     a. Give the **Identity Provider Name** like `AzureAD` in the textbox.
 
     b. In **Used for Environments** textbox, select the appropriate environment names from the dropdown.
 
     c. Click on **Select files** to upload the downloaded **Federation Metadata XML** file.
 
-    d. Click on **OK** and then **Done**.
+    d. Click on **OK**.
 
-1. After clicking **Done**, a new row will be added in the **SAML Identity Providers** and then you can add the below steps for the newly created row.
+1. After clicking **OK**, a new row will be added in the **SAML Identity Providers** and then you can add the below steps for the newly created row.
 
-    ![SAML Identity Providers.](./media/workday-tutorial/saml-identity-providers.png "SAML Identity Providers")
+    ![Screenshot of showing SAML Identity Providers.](./media/workday-tutorial/saml-identity-providers.png "SAML Identity Providers")
 
     a. Click on **Enable IDP Initiated Logout** checkbox.
 
@@ -180,21 +180,11 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 
     f. In the **Service Provider ID** textbox, type **http://www.workday.com**.
 
-    g Select **Do Not Deflate SP-initiated Authentication Request**.
-
-1. Perform the following steps in the below image.
-
-    ![Workday](./media/workday-tutorial/service-provider.png "SAML Identity Providers")
-
-    a. In the **Service Provider ID (Will be Deprecated)** textbox, type **http://www.workday.com**.
-
-    b. In the **IDP SSO Service URL (Will be Deprecated)** textbox, type **Login URL** value.
-
-    c. Select **Do Not Deflate SP-initiated Authentication Request (Will be Deprecated)**.
+    g. Select **Do Not Deflate SP-initiated Authentication Request**.
 
-    d. For **Authentication Request Signature Method**, select **SHA256**.
+    h. Click **Ok**.
 
-    e. Click **OK**.
+    i. If the task was completed successfully, click **Done**.
 
     > [!NOTE]
     > Please ensure you set up single sign-on correctly. In case you enable single sign-on with incorrect setup, you may not be able to enter the application with your credentials and get locked out. In this situation, Workday provides a backup log-in URL where users can sign-in using their normal username and password in the following format:[Your Workday URL]/login.flex?redirect=n
@@ -207,13 +197,13 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 
 1. In the **Directory** page, select **Find Workers** in view tab.
 
-    ![Find workers](./media/workday-tutorial/user-directory.png)
+    ![Screenshot of showing Find workers.](./media/workday-tutorial/user-directory.png)
 
 1.  In the **Find Workers** page, select the user from the results.
 
 1. In the following page,select **Job > Worker Security** and the **Workday account** has to match with the Azure active directory as the **Name ID** value.
 
-    ![Worker Security](./media/workday-tutorial/worker-security.png)
+    ![Screenshot of showing Worker Security.](./media/workday-tutorial/worker-security.png)
 
 > [!NOTE]
 > For more information on how to create a workday test user, please contact [Workday Client support team](https://www.workday.com/en-us/partners-services/services/support.html).
