Once you have edited an approval policy, you need to test it. This checks whether the approval steps can be used in the approval workflows in this combination. Non-valid approval steps are displayed in the error window.
To test an approval policy
In the Manager, select the Attestation > Basic configuration data > Approval policies category.
Select the approval policy in the result list.
Select the Validity check task.
To customize pre-defined approval polices, you can copy approval policies and then edit them. All assigned approval workflows are copied as well.
To copy an approval policy
In the Manager, select the Attestation > Basic configuration data > Approval policies category.
Select an approval policy in the result list and run the Change main data task.
Select the Copy approval policies task.
Enter a name for the copy of the approval policy.
Enter names for the workflow copies.
Click OK to start copying.
- OR -
Click Cancel to cancel copying.
To edit the copy immediately, click Yes.
- OR -
To edit the copy later, click No.
You need to allocate an approval workflow to the approval policies in order to find the attestors. In an approval workflow, you specify the approval procedures, the number of attestors and a condition for selecting the attestors.
Use the Workflow Editor to create and edit approval workflows.
To edit an approval workflow
In the Manager, select the Attestation > Basic configuration data > Approval workflows category.
Select the approval workflow in the result list and run the Change main data task.
- OR -
Click 
This opens the Workflow Editor.
Edit the approval workflow main data.
Use the Workflow Editor to create and edit approval workflows. The Workflow Editor allows approval levels to be linked together. Multi-step approval processes are clearly displayed in a graphical form.
Figure 1: Workflow Editor
Approval levels and approval steps belonging to the approval workflow are edited in the Workflow Editor using special control elements. The Workflow Editor contains a toolbox. The toolbox items are activated or deactivated depending on how they apply to the control. You can move the layout position of the control elements in the Workflow Editor with the mouse or these can be moved automatically.
|
Control |
Item |
Meaning |
|---|---|---|
|
Workflow |
Edit |
Edit the properties of the approval workflow. |
|
Layout automatically |
The workflow elements are aligned automatically. The workflow layout is recalculated. | |
|
Approval levels |
Add |
A new approval level is added to the workflow. |
|
Edit |
Edit the properties of the approval workflow. | |
|
Delete |
Deletes the approval level. | |
|
Approval steps |
Add |
Add a new approval step to the approval level. |
|
Edit |
Edit the properties of the approval step. | |
|
Delete |
Deletes the approval step. | |
|
Assignments |
Remove positive |
The Approved connector for the selected approval level is deleted. |
|
Remove negative |
The Deny connector for the selected approval level is deleted. | |
|
Remove reroute |
The Reroute connector for the selected approval level is deleted. | |
|
Remove escalation |
The Escalate connector for the selected approval level is deleted. |
Each of the controls has a properties window for editing the data of the approval workflow, level, or step. To open the properties window, select the Toolbox > < Control> > Edit item.
To delete a control, select the element and then the Toolbox > <Control> > Delete item.
Individual elements are linked to each other with a connector. Activate the connection points with the mouse. The cursor changes into an arrow icon for this. Hold down the left mouse button and pull a connector from one connection point to the next.
Figure 2: Approval workflow connectors
| Connector | Meaning |
|---|---|
|
Approve |
Link to next approval level if the current approval level was granted approval. |
|
Deny |
Link to next approval level if the current approval level was not granted approval. |
|
Reroute |
Link to other approval levels to bypass the current approval. |
|
Escalation |
Connection to another approval level when the current approval level is escalated after timing out. |
By default, a connection between workflow elements and level elements is created immediately when a new element is added. If you want to change the level hierarchy, drag a new connector to another level element.
Alternatively, you can release connectors between level elements using the Toolbox > Assignments items. To do this, mark the level element where the connector starts. Then add a new connector.
Different icons are displayed on the level elements depending on the configuration of the approval steps.
| Icon | Meaning |
|---|---|
|
|
The approval decision is made by the system. |
|
|
The approval decision is made manually. |
|
|
The approval step contains a reminder function. |
|
|
The approval step contains a timeout. |
Changes to individual elements in the workflow do not take place until the entire approval workflow is saved. The layout position in the Workflow Editor is saved in addition to the approval policies.
© 2025 One Identity LLC. ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center
