Generating a certificate and key files for your Workday user account

Procedure

Launch a command line interface and change to a directory (for example, D:\cert) used to store the certificate and the key file.
Generate a self-signed certificate and an RSA key file by executing the following command in the command line console on your machine.
openssl req -x509 -newkey rsa:2048 -keyout key.pem -out cert_workday.pem -days 3650

This command generates a self-signed certificate named cert_workday.pem under the current path (that is, D:\cert). It also generates a 2048-bit RSA key file named key.pem.
Convert the RSA key file into a PKCS 8 key file by executing the following command in the command line console.
openssl pkcs8 -topk8 -inform PEM -outform PEM -nocrypt -in key.pem -out privatekey_workday.key
This command generates the privatekey_workday.key key file under the current path.
Log in to Workday using your user account credentials and launch the Create x509 Public Key task by entering Create x509 in the search bar and clicking Create x509 Public Key in the search result list.

The Create x509 Public Key page appears.

Information noteNote: To launch a task or a report in Workday, enter a part or the full name of the task or the report in the search bar on the top of the Workday page and click the desired task or report in the result list that appears under the search bar.
Enter a name for the x509 public key in the Name field, copy-paste the content of the certificate (that is, the cert_workday.pem file) in the Certificate field, and then click OK.
This step creates the x509 public key.
Information noteTip: Store the public key name in a safe place for later use.

Did this page help you?

If you find any issues with this page or its content – a typo, a missing step, or a technical error – let us know how we can improve!

Leave your feedback here