> ## Documentation Index
> Fetch the complete documentation index at: https://docs.stackone.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Connect HiBob with Service User – StackOne Hub

> Link a HiBob account in the StackOne Hub using Service User. End-user guide to authorize the integration and start using HiBob actions.

<Warning>Ensure you have Admin privileges for your Hibob account.</Warning>

<section data-guide-section data-guide-scopes="">
  <h2>Creating a New Service User</h2>

  <p>To connect Hibob with StackOne, you'll need to create a Service User and configure its permissions.</p>

  <Steps>
    <Step title="Navigate to Service Users">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Sign in to your <a href="https://app.hibob.com/" target="_blank" rel="noopener noreferrer">Hibob account</a>,</p>

        <ul>
          <li>Using the Apps menu (left top corner), select <strong>System Settings > Integrations</strong></li>
          <li>Select <strong>Automation</strong> under Categories</li>
          <li>Click <strong>Manage</strong> under the Service Users icon</li>
        </ul>
      </div>
    </Step>

    <Step title="Create New Service User">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Click on the <strong>Create service user</strong> button to create a new service user. Fill in the details with relevant information and click <strong>Next</strong>.</p>

        <ul>
          <li>Enter <strong>Display name</strong> of the service user (e.g., StackOne Integration)</li>
          <li>Enter <strong>Description (optional)</strong> for the service user (e.g., Service user for StackOne integration)</li>
        </ul>
      </div>
    </Step>

    <Step title="Copy Service User ID and Token">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Copy the Service User ID and Token and store them securely.</p>

        <ul>
          <li>Copy the <strong>Service User ID</strong> (normally prefixed with `SERVICE-`)</li>
          <li>Copy the <strong>Service User Token</strong></li>
          <li>⚠️ The token cannot be retrieved after this step. However, the token can be reset and a new one created.</li>
        </ul>
      </div>
    </Step>

    <Step title="Create Permissions Group">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>The newly created Service User account has no access permissions by default. You need to add a permissions group for your Service User. See <a href="https://help.hibob.com/hc/en-us/articles/4409776408209-Create-a-custom-permission-group" target="_blank" rel="noopener noreferrer">Hibob's guide on creating custom permission groups</a>.</p>

        <ul>
          <li>Click on <strong>Go to Permission Groups</strong>, which will take you to the Permissions Groups page in Hibob.</li>
          <li>Create a new permissions group (e.g., StackOne Service Users) or select an existing one to which you want to add the Service User.</li>
        </ul>
      </div>
    </Step>

    <Step title="To create a new permissions group">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>Grant the necessary permissions to the group to allow StackOne to access the required data. At minimum, ensure the following permissions are granted:</p>

        <ul>
          <li>Click on <strong>Create permissions group</strong> button.</li>
          <li>Select `Service User`.</li>
          <li>Enter the necessary details such as Group name, Tags (optional), Description (optional), and Members (select the service user you just created in the above steps).</li>
          <li>Click <strong>Create</strong> to save the group, which will take confirmation and then direct you to the permissions settings for the group.</li>
          <li>In <strong>Features</strong> tab, enable permissions for People (Directory, Employees, Organisational chart), Time off (Settings), and Reports.</li>
          <li>In <strong>People's Data</strong> tab, enable View and Edit permissions for employee sections (About, Address, Basic info, Employment, Jobs, Payroll, etc.).</li>
          <li>Grant permissions for Documents (Confidential Docs, Shared Docs) and Time off (Balance, Requests, See who's out today).</li>
          <li>If you have custom fields, grant View and/or Edit permissions for all custom fields to be included in the integration.</li>
          <li>Click <strong>Save</strong> & <strong>Apply</strong> to save the permissions group.</li>
        </ul>
      </div>
    </Step>

    <Step title="To add Service User to an existing permissions group">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>If you choose to add the Service User to an existing permissions group, ensure that the group has the necessary permissions as outlined in the previous step. If not, edit the permissions for the group accordingly.</p>

        <ul>
          <li>Click on the existing permissions group you want to add the Service User to.</li>
          <li>Click on <strong>Edit Permissions</strong> available at the top right corner.</li>
          <li>In <strong>Features</strong> tab, enable permissions for People (Directory, Employees, Organisational chart), Time off (Settings), and Reports.</li>
          <li>In <strong>People's Data</strong> tab, enable View and Edit permissions for employee sections (About, Address, Basic info, Employment, Jobs, Payroll, etc.).</li>
          <li>Grant permissions for Documents (Confidential Docs, Shared Docs) and Time off (Balance, Requests, See who's out today).</li>
          <li>If you have custom fields, grant View and/or Edit permissions for all custom fields to be included in the integration.</li>
          <li>Click <strong>Save</strong> & <strong>Apply</strong> to save any changes to the permissions group.</li>
        </ul>
      </div>
    </Step>

    <Step title="Navigate to Permissions Groups">
      <div data-guide-step data-guide-scopes="" data-guide-display-scopes-list="">
        <p>You can also navigate to Permissions Groups from the main menu in Hibob to manage permissions groups and their service users.</p>

        <ul>
          <li>Go to <strong>Account</strong> > <strong>Permissions groups</strong>.</li>
          <li>Click on the group you created for Service Users.</li>
        </ul>
      </div>
    </Step>
  </Steps>
</section>

<div data-whitelabel-hide>
  <h2>Linking the Account from the Hub</h2>

  <Steps>
    <Step title="Navigate to the Hub">
      Use one of the three <a href="/guides/accounts-section#linking-accounts">Linking Account Methods</a> to access the Hub.
    </Step>

    <Step title="Fill out the fields">
      Fill out the following fields using details from your provider:

      <ul>
        <li><strong>Hibob Service User ID</strong></li>
        <li><strong>Hibob Service User Token</strong></li>
      </ul>
    </Step>

    <Step title="Connect">
      <ul>
        <li>Click <strong>Connect</strong></li>
        <li>If applicable, the provider will redirect you to a sign-in or authorization page. Complete the provider's authorization flow.</li>
        <li>Once authorization is successful, you will see a confirmation popup</li>
      </ul>
    </Step>
  </Steps>

  <p>If the account linking is successful, you will see the newly linked account in your <a href="/guides/accounts-section">Accounts</a> page.</p>
</div>

## Next Steps

<Columns cols={2}>
  <Card title="Webhooks setup" href="/connectors/hibob/guides/webhook-setup">
    <p className="connector-page-auth-description" style={{ fontSize: '14px', marginTop: 0, marginBottom: 0 }}>
      Configure receiving Events for HiBob into StackOne.
    </p>
  </Card>
</Columns>
