On the General tab, enter the following information for the access request policy.

Navigate to:

  • web client: Security Policy Management > Entitlements > Access Request Policies > (create or edit a policy)
Table 132: Access Request Policy: General tab properties
Property Description
Name

Enter a unique name for the access request policy.

Limit: 50 characters

Description

Enter descriptive text that explains the access request policy.

Limit: 255 characters

Priority

The priority of this policy compared to other policies in this entitlement.

If a user desires to access an account in the scope of two different request polices within an entitlement, then the policy with the highest priority (that is, the lowest number) takes precedence. For more information, see How SPP evaluates policy when a user submits an access request..

Choose Request Policy Type

Specify the type of request policy:

  • Credential

    • Password

    • SSH Key

    • API Key

  • Session

    • RDP (Remote Desktop Protocol)
    • RDP Application
    • SSH (Secure SHell)
    • Telnet

Choose Credential Type

Specify the type of credential:

  • Password

  • SSH Key

  • API Key

NOTE: You can configure an access request policy for a password, SSH key, or API key request; however, if the Privileged Passwords module license is not installed, you will not be able to submit a password, SSH key, or API key release request.

Similarly, you can configure an access request policy for a session request; however, if the Safeguard for Privileged Sessions server is not joined to SPP, you will be unable to submit a session request.

NOTE: When checking out API keys, since multiple API keys may be associated with an account it will check out all the API Keys.

Have the Access Policy Expire on Date and Time Select this to enforce an expiration date for the policy. Enter the expiration date and time.

Use Time Windows

Select this option to enforce time windows.

Select and drag to highlight the hours you want to allow. Colored tiles are blocked times . Clear are available times.