Configuring app credentials

In watsonx Orchestrate, credentials play a critical role in enabling secure and authenticated access to third-party apps such as Workday, Salesforce, and Coupa. Credentials are the digital keys that unlock access to external apps such as Workday, Salesforce, Coupa, or any other third-party application.

Whether you're working in a draft environment for testing or a live environment for production, managing credentials effectively ensures seamless integration and data protection.

Accessing credentials

You may need to access credentials to verify authentication details, troubleshoot integration issues, or update expired credentials. In watsonx Orchestrate, the Credentials tab provides a centralized view of all configured credentials, helping you manage access across environments and applications.

To view and manage your credentials:

  1. From the main menu, select Manage > Connections
  2. Select the Credentials tab.
  3. You see a list of all the configured credentials. Both personal and team credentials are displayed.

This interface lets you to quickly identify the credentials that are active, their associated applications, authentication type, and credential type.

Adding a credential

To enable secure access to third-party apps, you must add credentials to the app connection that was previously created. This links your app connection with necessary authentication details. To add a credential to your app connection:

  1. From the main menu, select Manage > Connections
  2. Open the Credentials tab to view existing credentials.
  3. Click Add credential +.
  4. Search for the app connection you previously created.
  5. Select the app and click Next.
  6. The credential type (Member or Team) is automatically selected based on your connection setup.
  7. Enter the required details (for example, username and password).
  8. Click Connect to validate and save.
  9. Click Done to complete the setup.

Make sure the credentials match the authentication method that is configured for your app.

Editing credentials

You can update credentials at any time. For example, when a password changes or a token expires. To edit a credential:

  1. From the main menu, select Manage > Connections
  2. Select the Credentials tab.
  3. Locate the app in the Connections list.
  4. Click the vertical ellipsis () next to the credential and select Edit.
  5. Update the required fields and click Update credential to save changes.
  6. A Supports confirms a successful connection.
  7. Click Done to exit.
Notes:
  • If the authentication type for the connected app is set to "OAuth2 On the behalf of flow (SSO)", editing and disconnecting are disabled. Token management is handled automatically by the backend. No manual intervention is required for credential updates.
  • If the authentication type for the connected app is set to "OAuth2 – Client Credentials", editing is disabled because no user input is involved in credential setup.

Deleting credentials

Deleting a credential is a sensitive action, it disconnects the app and may impact tools or agents that rely on it.

To delete a credential:

  1. From the main menu, select Manage > Connections
  2. Select the Credentials tab.
  3. Locate the app in the Connections list.
  4. Click the vertical ellipsis () next to the credential and select Disconnect. Review dependencies before confirming deletion to avoid service disruptions.
  5. Confirm by clicking Delete.
Note: Before deleting, consider notifying affected users, checking for dependencies, and ensuring alternative credentials are available to avoid unintended disruptions.