In the Web Portal default installation approvers can request and cancel products for other users. Approvers can only request products for users of shops they manage and where the user is an customer. Furthermore, department managers and their deputies may edit the data for employees belonging to their department.
The responsibilities are evaluated through the following database view (View).
|QERVEditEmployee||This view displays the department manager, his or her deputies and employees whose data can be edited.|
Managers can edit master data for their employees in the Web Portal. In the same context, it is possible to define a new manager for an employee. To do this, the previous manager requests assignment of another manager. If the other manager agrees to the assignment, they are assigned to the employee as manager.
There are some prerequisites required for changing managers using the Web Portal.
|Resource "New manager assignment"||Used to request another manager in the IT Shop. The product is canceled the moment the new manager has been assigned.
The service item "New manager assignment" is assigned.
|Service item "New manager assignment"||Product requested when another manager is assigned
The approval policy "New manager assignment".
|IT Shop structure "Identity & Access Lifecycle\Identity Lifecycle"||This service item is assigned by default to the shelf "Identity Lifecycle" in the shop, "Identity & Access Lifecycle".|
|Approval policy "New manager assignment"||Specifies the approval workflow used to approve the change of manager.
It is assigned to the approval workflow, "New manager assignment".
|Approval workflow "New manager assignment"||Establishes other managers as approvers.
If this is denied, the request is returned to the previous manager.
|Process VI_ESS_PersonWantsOrg_Set_New_Person.Manager||Assigns the other manager as new manager to the employee if the change of manager is approved and the request time period is valid.|
Changing Manager Sequence
|New manager||Employee to act as manager.|
|Effective date||Date from which changes take effect.|
|Changes to run after approval||
Changes, which should be run after approval has been granted and the new manager has been assigned, for example, deleting user accounts or removing memberships in system entitlements.
The previous manager can decided which of the changes should be run.
|Additional request data||New manager.|
|Valid from||Date from which changes take effect.|
|Additional information||Additional changes to be made.|
This manager can select another manager and approve the request. The request is assigned to this other manager for approval.
The previous manager can deny request approval. The change of manager is closed. The employee’s manager is not changed.
For more detailed information about assigning a new manager, see the One Identity Manager Web Portal User Guide.
Request recipients, requesters and the members of the chief approval team can cancel request that have not already be approved in the Web Portal. The approval process is canceled immediately. The request is given the status "Canceled".
For more detailed information about canceling processes in the Web Portal, see the One Identity Manager Web Portal User Guide.
To cancel a request in the Manager
|QER\ITShop\DefaultSenderAddress||This configuration parameter contains the sender email address for automatically generated messages within the IT Shop.|
Messages are not sent ti the chief approval team by default. Fallback approvers are only notified if not enough approvers could be found for an approval step.
To use notification in the request process