Access Request

CONNECT > Configuration > Access Request:

An administrator is able to configure the workflow process for requesting the assignment of a specific Access Group to an Identity.

Within this section the user is able to configure the approval process for access requests. As part of the configuration process the user can specify which fields are Hidden/Visible/Required, which Identity Types can request access “On Behalf Of” others, and the user can provide various policy/help text as required.

Workflow

  • If the Default Workflow is used, the relevant ACR and ACRM will receive an email notification when an access request is made for their Access Group. If the ACR or ACRM approves the request, the Access Group is assigned to the requester.
  • If a Custom Workflow is preferred, the user is able to configure the specific user roles that need to approve the request. The user can also decide whether the approvals must come in order, or whether all approvers receive the request at the same time. The possible approvers are:
    • ACR Administrator
    • Access Control Manager (ACRM)
    • Access Control Representative (ACR) Required to be included
    • CONNECT Admin
    • Identity’s manager

Mandatories

Administrators can configure the Mandatory Fields that are part of the request process. These fields include:

  • Activation Date - The date the access group will become active
  • Expiration Date - The date the access group will expire
  • Business Justification - The reason the requester needs the access

Options for these include:

  • Hide - Do not include
  • Show - Display
  • Required - The user must provide a response

On Behalf Of

Allows the administrators to specify which Identity Types are able to request access “On Behalf Of” other Identities. If enabled, Identity “A” is able to request access for Identity “B” within the application.

Instructions, Acknowledgement, and Policy Statement

Finally, the user is able to enter text for:

  • Instructions: Instruction text can be seen by the user when requesting access.
  • Acknowledgement: Text can be seen once a request has been made.
  • Policy Statement: Text displays right after a request is made.