Reviewing access requests
Depending on how your org is configured, you may be asked to review requests for access and access removals. When a request is approved, the user’s access for an application, role, or entitlement is granted or removed, depending on the type of request. If you deny a request, the approval process stops, and no access is granted or removed.
When you need to review a request, you will receive an email notifying you that it's ready for your review.
If someone else in your governance group has already reviewed an access request, it will disappear from your list. Only one person per group needs to approve or deny access.
Before you approve or deny a request from the request card, review the Grant or Remove note in the upper-left corner of the card.
In the Requested Items tab, select a request card to review details about the request.
Review the requested information.
Select Approve or Deny.
If you believe someone else is better suited to review this request, select Assign to a different reviewer () to reassign the request to them.
When you approve a request, the following can occur:
- If the request requires multiple reviewers, it is sent to the next reviewer in the queue.
- If you're the last reviewer in the review process for this request, the user's access is added or revoked, depending on the type of request.
If you deny a request, you're prompted to enter the reason you are denying the request.
After you deny a request, the approval process ends. Even if there are multiple reviewers in the queue, only one reviewer needs to deny access to stop the process.
If your administrator has configured an escalation policy, you may receive reminder emails until you review the request. The request may be reassigned to another reviewer, such as your manager, if you do not review it within the time designated in the policy. Contact your administrator for more information.
To view access requests you've already approved or denied, select the Reviewed Items tab. Select a request to view its details, your comments, the original requester's comments, and any reassignment-related comments.
You may need to reassign requests to another user if they are better suited for that approval. You can reassign requests to ensure users get access to the data and applications they need.
Select Approvals from the navigation menu.
In the Requested Items tab, select the request you want to reassign. Details about the request will appear in a new window.
Select Assign to a different reviewer ().
In the Reassign To field, enter the name of the new reviewer.
In the Add Comments field, enter the reason you're reassigning this access request to the new reviewer or any other comments related to the request.
Select Reassign to reassign the request.
The new reviewer will receive an email that the access request has been reassigned to them.