Use the Access Config tab to configure the access settings for the type of access being requested, based on the access type specified on the General tab.
Navigate to:
- desktop client: Administrative Tools | Entitlements | Access Request Policies | (create or edit a policy)
Property |
Description |
---|---|
Access Type |
This is a read-only field displaying the type of access selected on the General tab which may be a: Credential access type:
Session access type:
|
Include password release with sessions requests |
If Access Type is RDP, SSH, or Telnet, select this check box to include a password release with session access requests. |
Include SSH Key release with sessions requests |
If Access Type is RDP, SSH, or Telnet, select this check box to include an SSH Key release with session access requests. |
Close expired sessions |
If Access Type is RDP, SSH, or Telnet, select this check box to close sessions that have expired. |
Change password after check-in |
Select this check box if the password is to be changed after the user checks it back in. This check box is selected by default. |
Change SSH key after check-in |
Select this check box if the SSH key is to be changed after the user checks it back in. This check box is selected by default. |
Passphrase Protect SSH Key |
If Access Type is SSH Key, select this check box to require a passphrase for the SSH key. |
Allow simultaneous access |
Select this check box to allow multiple users access to the accounts and assets governed by this policy. Use the next check box to identify how many users can have access at once. |
Maximum users at one time |
When the Allow simultaneous access option is selected, enter the maximum number of users that can request access at one time. |
Asset-Based Session Access |
If Access Type is RDP, SSH, or Telnet, select one of the following options to define the type of account credentials to be used to access any of the assets defined in the policy scope, in addition to the accounts defined in the policy scope when a session is requested:
|
Allow password access to linked accounts |
If Access Type is Password Release, select this check box to allow users to request passwords for their respective linked account. Access to each user’s linked account is governed by the other configurations defined in this policy. For more information, see Linked Accounts tab (user). Additionally, Enable scope filtering for linked accounts can be selected in order to limit the number of requestable accounts to linked accounts that are also defined in the scope. |