All,
I am trying to configure Workday to use Azure AD for Single Sign-On (SSO). I am following Microsoft guidance:
https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/workday-tutorial
When testing, I navigate to https://impl.workday.com/<tenantName>, which redirects me to authenticate to Azure AD. However, after successfully logging in to Azure AD, I receive the following error from Workday (see screenshot here):
Workday Sign In Error. Invalid user name or password, please try again. Note: you may not be able to change or reset your password from Workday if your account uses a corporate password. Please retry login here.
This failed login does not show up in Workday logs. I extracted the SAML token issued from Azure AD, where the NameID matches the username of the Workday account (screenshot here). The SAML configuration page in Azure AD is seemingly all good as well (screenshot here).
Any idea of what is going on?