The SuccessFactors integration is a read-only, nightly sync of your employee directory information into Together Platform. We do not push back any data into SAP.
Registering Your OAuth2 Client Application
- Log into your instance as an administrator.
- Go to Admin Center > API Center > OAuth Configuration for OData and choose Register Client Application. You can also access the tool by searching Manage OAuth2 Client Applications in Action Search.
- On the new OAuth client registration screen, enter the following information:
4. Click on "Generate x.509 Certificate"
5. Enter my.togetherplatform.com for the Common Name(CN) and click Generate
6. You will then return to the previous menu with a X.509 Certificate. Click on "Download" in order to to save the private part of the certificate that you will later be sharing with us. It is required to download the certificate now, since SuccessFactors does not store this part of the certificate.
7. You will return to the recently created "OAuth Client Application" to access the Company and API Key. Please take note of these values, since you will need to share them with us later.
8. Click on Register.
Create an Integration User
Together with the app details, we’ll need a technical user which will be used to make the OData API requests to SuccessFactors. This user needs to have the permission to make these kind of requests and to access the employee data we want to import.
- Create a new user for this purpose through the Add New Employee wizard. Note the ID of this user for later.
- Now return to the Admin Center and click on Manage Employees > Set User Permissions > Manage Permission Groups.
- Click “Create New” to make a new Permission Group. Name the permission group “Together Integration Permission Group” and assign it to the user we created earlier.
- Access the Permission Role List menu by searching for "Permission Role List". Click "Create New". This will take us into the "Permission Role Detail", where you can provide a role name and description.
Here we are going to add the permission required by the integration user for communicating with SAP SF in the way we expect. The permissions required are:
Grant this role to the group we previously created containing the user. Go in section 3 and click "Add". Select the permission group by clicking “Select...”
Click on Save Changes
Send us the following information:
- Client ID – API key from the OAuth app
- User ID – ID of the technical user to make the token request with.
- Private key – Private key of the certificate added or generated for the integration app (beekeeper integration app) previously subscribed in SAP SF.
- Company ID – Company ID that represents the company in SAP SF.
- Base URL – URL for the SAP instance (e.g., https://apisalesdemo4. successfactors.com/odata/v2/)