Use the Reviewer tab to define the reviewer settings for an access request policy.
Navigate to Administrative Tools | Entitlements | Access Request Policies | (create or edit a policy).
Property | Description |
---|---|
Review Not Required |
This check box is selected by default, indicating that no review is required for completed access requests for accounts and assets governed by this policy. |
Review Required |
Select this check box to require a review of completed access requests for accounts and assets governed by this policy.
NOTE: A reviewer can only review an access request once it is completed. TIP:As a best practice, add user groups as reviews rather than individuals. This makes it possible to add an individual reviewer to a pending access request. In addition, you can modify a reviewers list without editing the policy. NOTE: The users you authorize as reviewers receive alerts when an access request requires their review if they have Safeguard for Privileged Passwords configured to send alerts. |
Require Comment |
Select this check box if the reviewer is required to enter a comment when reviewing an access request. |
Pending reviews do not block access |
Select this check box when you want to allow new access requests whether a prior request is approved or not approved. In other words, no requests will be blocked based on the approval status of a prior request. |
Notify if reviewers have pending reviews after To |
(Optional) Select this check box to enable notifications.
NOTE: You can enter email addresses for non-Safeguard for Privileged Passwords users. Important:Safeguard for Privileged Passwords does not dynamically maintain the email addresses for an escalation notification contact list. If you change a Safeguard for Privileged Passwords user's email address or delete a Safeguard for Privileged Passwords user after creating a policy, you must update the email addresses in an escalation notification contact list manually. For more information, see User not notified. NOTE: To send event notifications to a user, you must configure Safeguard for Privileged Passwords to send alerts. For more information, see Configuring alerts. |