GoCo
API keyHR & OpsOrg connection
Org-level connection
GoCo is connected once at the org level by an admin. The credential is shared across all groups that have been granted access — individual team members don't need to connect their own accounts.
Getting your API key
Log in to GoCo as a Full Access Admin
Go to GoCo Marketplace → API Credentials
Generate an API key and copy it
Paste it below
Ready to connect?
Sign in to On Belay and open the Integrations page to add GoCo.
Permissions (scopes)
These are the data scopes On Belay can be granted for GoCo. Your org admin controls which scopes are enabled per group.
| Scope | Description | Access |
|---|---|---|
employees:read | Read employee records | Read only |
time_off:read | Read time off requests | Read only |
benefits:read | Read benefits | Read only |
documents:read | Read documents | Read only |
onboarding:read | Read onboarding workflows | Read only |
Troubleshooting
"Invalid API key" or "Unauthorized" error
Double-check that you copied the full key without any leading/trailing spaces. Some platforms show a truncated preview — make sure to copy the full token. If the key was generated with restricted scopes, verify it includes the permissions listed above.
Connected but Claude can't access data
Check that your group has been granted access to this integration in On Belay → Groups → [your group] → Integrations. Also verify the specific scopes your group is permitted to use match what your query requires.
The key expires or stops working
Some API keys have expiration policies. Generate a new key in GoCo and update it in On Belay → Integrations → GoCo → Update key. Consider creating a dedicated service account or machine user for On Belay so the key isn't tied to a personal account.
Still stuck? We're happy to help.
Contact support →