External Career Sites Powered by Workday – Cookie Information
Career sites powered by Workday use the following required cookies:
| Cookie subgroup | Cookies | Description | Cookie type | Cookie duration |
|---|---|---|---|---|
| Session experience | PLAY_LANG, PLAY_SESSION, timezoneOffset, wd-browser-id wday_vps_cookie CXS_SESSION |
User, device, and session ID cookies, as well as timestamp cookies used to time out sessions after a period of inactivity. These cookies expire at the end of the session. | First-party | Session |
| Security management | TS* | Helps prevent cyberattacks on the user’s interactions with the enterprise cloud applications. Ensures that the domain and subdomain cookies exchanged between the web server and the client remain unaltered. | First-party | Session |
| Security management | CALYPSO_CSRF_TOKEN | Contains a CSRF token to prevent cross-site request forgery attacks, that is, to prevent a user from performing unintended actions on the career site. | First-party | Session |
| Security management | __cf_bm | Identifies and mitigates automated traffic to protect the Platform from malicious bots. | First-party | After 30 minutes of inactivity |
| Load balancing | Naming conventions for WorkdayLB_* WorkdayLB_UICLIENT, WorkdayLB_SAS |
Forwards requests for a single session to the same server to ensure service consistency. | First-party | Session |
Organizations using Workday Career Sites may enable one or more of the optional features that use cookies or similar technologies. The table below provides further details on these optional cookies:
| Cookie subgroup | Cookies | Description | Cookie type | Cookie duration |
|---|---|---|---|---|
| Cookie preferences | enablePrivacyTracking | Boolean tracker to capture user preferences for non-essential cookies from the External Career Site Cookie Banner. | First-party | Session |
| Performance (analytics) | Google Analytics: _ga* | Provides Google Analytics data using the specified Tracking ID for metrics related to traffic from external sites. | First-party | 400–730 days |
| Functional (Apply via LinkedIn) | JSESSIONID lang bcookie bscookie li_gc lissc lidc fcookie fid |
Supports the "Apply with LinkedIn" feature. For more information, contact LinkedIn. See the sample "Apply with LinkedIn" reference materials. | third-party | Session (JSESSIONID, lang) 2 years, the rest. |
Workday Application
Workday’s enterprise cloud application sets the following required cookies:
| Cookie subgroup | Cookies | Description | Cookie type | Cookie duration |
|---|---|---|---|---|
| Session experience | PLAY_LANG, PLAY_SESSION, timezoneOffset, helpLastCheckin, JSESSIONID, LastUserActivity, learningLastCheckIn, SessionTimeoutMS, UserSignedIn, sessionLoggingInfo, uid, wd-alt-sessionid, wd-browser-id |
User, device, and session ID cookies, as well as timestamp cookies used to time out sessions after a period of inactivity. These cookies expire at the end of the session. | First-party | Session |
| Security management | TS* | Helps prevent cyberattacks on the user’s interactions with the enterprise cloud applications. Ensures that the domain and subdomain cookies exchanged between the web server and the client remain unaltered. | First-party | Session |
| Security management | deviceID | Uses deviceID to support the Trusted Devices feature. It expires after 1 year (see the Trusted Devices FAQ for information on configuring trusted devices). | First-party | 1 year |
| Security management | __cf_bm | Identifies and mitigates automated traffic to protect the Platform from malicious bots. | First-party | After 30 minutes of inactivity |
| Security management | _cfuvid | The _cfuvid cookie is only set when a site uses this option in a Rate Limiting Rule. It is used solely to enable the Cloudflare WAF to distinguish individual users who share the same IP address. | First-party | Session |
| Load balancing | Naming convention for WorkdayLB_* WorkdayLB_BP, WorkdayLB_MICROSCOPE, WorkdayLB_PEX, WorkdayLB_SAS, WorkdayLB_TALK, WorkdayLB_TALK_rest, WorkdayLB_TALK_ws, WorkdayLB_UI, WorkdayLB_UIAUTHGWY, WorkdayLB_USB, WorkdayLB_VPS2, WorkdayLB_WDRIVE_client, WorkdayLB_WDRIVE_server_rest, WorkdayLB_WDRIVE_server_ws |
Forwards requests for a single session to the same server to ensure service consistency. | First-party | Session |
| Load balancing | __cflb | Enables Cloudflare to redirect an end user back to the same customer origin for a specific period of time configured by the customer. This process ensures a seamless experience for the end user. | First-party | 11 hours |
Information retrieved on March 20, 2026
Click here to view the Recruiting privacy policies