how to setup schedule interview integration between Workday and Outlook

Question

how to setup schedule interview integration between Workday and Outlook

Mona Yan 0

Currently, we have enabled schedule interview with Outlook in our Workday tenant, however under Azure I don't know what steps should we take, and in Workday side, when we click Sign In it does not populated a request Approval prompt or any sign in page, but a error page that Workday is not available page.I can confirm from Workday side we have enabled the integration as Workday guide.

VEMULA SRISAI 13,415 Reputation points Microsoft External Staff Moderator

2026-06-12T06:37:53.4633333+00:00
Hello Mona Yan,

The issue you are encountering is not related to Outlook integration on the Azure side. From your description, the behavior where clicking Sign In redirects to a “Workday not available” page typically indicates that the SSO configuration between Workday and Microsoft Entra ID is not correctly set up or not completing the authentication flow.

To resolve this, please verify the following configuration on both sides:

On the Microsoft Entra ID side, ensure that the Workday application is added under Enterprise Applications and configured with SAML-based SSO. Confirm that the Identifier (Entity ID), Login URL, and certificate values are correctly noted.

On the Workday side, navigate to Edit Tenant Setup – Security and confirm that Enable SAML Authentication and OAuth 2.0 Clients Enabled are set to Yes. In the SAML Identity Provider configuration, validate that:

The Issuer matches the Microsoft Entra Identifier

The IdP SSO URL matches the Entra Login URL

The X.509 certificate is correctly uploaded

The Service Provider ID exactly matches the Entity ID configured in Entra

If any of these values are mismatched, the authentication request will fail and result in the error page you are seeing.

As a next step, I recommend testing SSO independently (outside of interview scheduling) using the Workday login URL or MyApps portal. Once SSO is working successfully, the Outlook-based interview scheduling integration will function automatically, as it relies on authenticated access and user mailbox availability rather than a separate Azure configuration.
Mona Yan 0 Reputation points

2026-06-12T07:21:55.1566667+00:00

Thanks team,

Currently, our Workday SSO is working fine in Production and Sandbox and Sandbox preview, like we can login Workday successfully with SSO. However, when we try to use schedule interview no matter in which tenant, it populated this error.

It happens after we completed Workday public cloud migration.

And now we try to retest in our sandbox preview tenant and Azure Dev, do we need to resetup SSO in Azure Dev too?
Mona Yan 0 Reputation points

2026-06-12T07:36:35.0766667+00:00

Hello Vemula Srisai,

The"Sign In" means below button, when we schedule the interview, here is a button need to click, and it now jumps to a Workday unavailable page. But we can login Workday by SSO successfully.
VEMULA SRISAI 13,415 Reputation points Microsoft External Staff Moderator

2026-06-15T10:55:49.89+00:00

Mona Yan You don’t need any separate configuration in Azure specifically for Outlook interview scheduling. This feature only relies on SSO + Microsoft sign-in.

Since your normal Workday SSO is working, the issue is specific to the “Sign In” button flow, which uses a different redirect. After your cloud migration, that redirect is likely pointing to an old or invalid endpoint, which is why it goes to “Workday not available.”

For Sandbox Preview / Dev testing, you should update or reconfigure the Workday app in that tenant (especially redirect URLs and endpoints). Each Workday tenant behaves differently, so config must match that environment.
VEMULA SRISAI 13,415 Reputation points Microsoft External Staff Moderator

2026-06-19T03:10:35.4+00:00

Mona Yan I’m following up on my previous comment as I haven’t received a response. Please let me know if you need any additional information or assistance from my side.

1 answer

Your answer

VEMULA SRISAI 13,415 Reputation points Microsoft External Staff Moderator

2026-06-12T06:37:53.4633333+00:00

Hello Mona Yan,

The issue you are encountering is not related to Outlook integration on the Azure side. From your description, the behavior where clicking Sign In redirects to a “Workday not available” page typically indicates that the SSO configuration between Workday and Microsoft Entra ID is not correctly set up or not completing the authentication flow.

To resolve this, please verify the following configuration on both sides:

On the Microsoft Entra ID side, ensure that the Workday application is added under Enterprise Applications and configured with SAML-based SSO. Confirm that the Identifier (Entity ID), Login URL, and certificate values are correctly noted.

On the Workday side, navigate to Edit Tenant Setup – Security and confirm that Enable SAML Authentication and OAuth 2.0 Clients Enabled are set to Yes. In the SAML Identity Provider configuration, validate that:

The Issuer matches the Microsoft Entra Identifier

The IdP SSO URL matches the Entra Login URL

The X.509 certificate is correctly uploaded

The Service Provider ID exactly matches the Entity ID configured in Entra

If any of these values are mismatched, the authentication request will fail and result in the error page you are seeing.

As a next step, I recommend testing SSO independently (outside of interview scheduling) using the Workday login URL or MyApps portal. Once SSO is working successfully, the Outlook-based interview scheduling integration will function automatically, as it relies on authenticated access and user mailbox availability rather than a separate Azure configuration.
Mona Yan 0 Reputation points

2026-06-12T07:21:55.1566667+00:00

Thanks team,

Currently, our Workday SSO is working fine in Production and Sandbox and Sandbox preview, like we can login Workday successfully with SSO. However, when we try to use schedule interview no matter in which tenant, it populated this error.

It happens after we completed Workday public cloud migration.

And now we try to retest in our sandbox preview tenant and Azure Dev, do we need to resetup SSO in Azure Dev too?
Mona Yan 0 Reputation points

2026-06-12T07:36:35.0766667+00:00

Hello Vemula Srisai,

The"Sign In" means below button, when we schedule the interview, here is a button need to click, and it now jumps to a Workday unavailable page. But we can login Workday by SSO successfully.
VEMULA SRISAI 13,415 Reputation points Microsoft External Staff Moderator

2026-06-15T10:55:49.89+00:00

Mona Yan You don’t need any separate configuration in Azure specifically for Outlook interview scheduling. This feature only relies on SSO + Microsoft sign-in.

Since your normal Workday SSO is working, the issue is specific to the “Sign In” button flow, which uses a different redirect. After your cloud migration, that redirect is likely pointing to an old or invalid endpoint, which is why it goes to “Workday not available.”

For Sandbox Preview / Dev testing, you should update or reconfigure the Workday app in that tenant (especially redirect URLs and endpoints). Each Workday tenant behaves differently, so config must match that environment.
VEMULA SRISAI 13,415 Reputation points Microsoft External Staff Moderator

2026-06-19T03:10:35.4+00:00

Mona Yan I’m following up on my previous comment as I haven’t received a response. Please let me know if you need any additional information or assistance from my side.

Answer 1

To integrate Workday interview scheduling with Outlook/Microsoft 365, ensure that Workday is correctly configured to use Microsoft Entra ID (Azure AD) for SSO and that the Workday–Microsoft 365 integration prerequisites are met. The error page instead of a sign-in or consent prompt typically indicates an SSO or SAML configuration issue between Workday and Microsoft Entra.

Use the following checklist focusing on the Microsoft/Entra side and the Workday SSO configuration.

Verify Workday is added as an Enterprise app in Microsoft Entra

In the Microsoft Entra admin center, go to Entra ID → Enterprise apps → New application.
In Add from the gallery, search for Workday and add it.
This creates the Workday SSO application principal that will be used for SAML and OAuth.

Confirm Workday SSO configuration with Microsoft Entra Workday must already be configured for SSO with Microsoft Entra ID.

In Microsoft Entra (Workday Enterprise app):

Ensure SAML-based SSO is configured per the Workday SSO tutorial.
Note the following values from the Workday Enterprise app:
- Identifier (Entity ID)
- Login URL
- Microsoft Entra Identifier

In Workday (Tenant Setup – Security):

Ensure SSO is already set up using the “Configure Workday for Single sign-on with Microsoft Entra ID” guidance.
Confirm the Service Provider ID in Edit Tenant Setup – Security matches the Identifier (Entity ID) of the Workday SSO app in Microsoft Entra.
Ensure OAuth 2.0 Clients Enabled = Yes and Enable SAML Authentication = Yes.
In the SAML Identity Provider configuration, verify:
- Identity provider name: any name.
- Issuer: must match the Microsoft Entra Microsoft Entra Identifier.
- X.509 Certificate: uses the X.509 public key from Microsoft Entra.
- SP initiated: selected.
- Service Provider ID: unique and matching the Entra Identifier (Entity ID).
- IdP SSO Service URL: set to the Microsoft Entra Login URL.

If these values don’t match, Workday will fail SAML handoff and show an error instead of redirecting to Microsoft Entra.

Create and use the X.509 public key from Microsoft Entra in Workday

From the Workday SSO app in Microsoft Entra, export the SAML signing certificate (public key) as required.
In Workday, create a new X.509 public key using this certificate.
Assign this X.509 key in the SAML Identity Provider configuration so Workday can validate SAML messages.

Configure Workday authentication policies for the integration

In Workday, run Manage Authentication Policies.
Edit the policy for the tenant and ensure:
- The policy is scoped to the OAuth client identity used by the integration (for Employee Self-Service or similar scenarios).
- Users accessing interview scheduling are covered by a policy that allows SAML/OAuth sign-in via the configured IdP.

Validate that Microsoft Entra SSO works independently Before testing interview scheduling:

Test basic SSO to Workday via the Workday Enterprise app in Microsoft Entra.
From the Microsoft 365 app launcher or Entra Enterprise apps, launch Workday and confirm:
- Users are redirected to Microsoft Entra sign-in.
- After sign-in, users land in Workday without error.

If this fails, fix the SAML configuration (Issuer, Service Provider ID, IdP SSO Service URL, certificate) before troubleshooting interview scheduling.

Confirm identity alignment between Workday and Microsoft Entra

Ensure Workday login IDs and Microsoft Entra identities are mapped correctly (for example, UPNs or other identifiers used in SAML claims).
If Workday uses a third-party IdP federated with Microsoft Entra, ensure the SAML claims from that IdP match what Workday expects.

Re-test the interview scheduling sign-in Once SSO is confirmed:

From Workday, use the Sign In or schedule-interview action that should open Outlook/Calendar integration.
The expected behavior is:
- Workday redirects to Microsoft Entra (or the configured IdP) if not already authenticated.
- Microsoft Entra prompts for sign-in or consent (if needed) and then returns to Workday.

If Workday still shows “Workday is not available” instead of redirecting:

Re-check the Service Provider ID, Issuer, and IdP SSO Service URL alignment.
Ensure the X.509 certificate in Workday matches the Microsoft Entra SAML signing certificate.

Because the context provided focuses on Workday–Microsoft Entra SSO and Employee Self-Service integration, the core requirement is a correctly configured SAML/OAuth trust between Workday and Microsoft Entra. Once SSO is working, Workday’s Outlook-based interview scheduling can rely on the same identity and calendar access.

References:

Share via

how to setup schedule interview integration between Workday and Outlook

1 answer

Your answer