New User Access Request
Last updated
Was this helpful?
Last updated
Was this helpful?
With BalkanID, any team member can request access for themselves or for others to any support application integration. Requests can be either GRANT (provisioning) or REVOKE (de-provisioning). GRANT requests can be permanent or temporary (specified by end time, when the access is automatically de-provisioned).
By default, every access request goes through a review process. Upon successful approval of the access request (by the assigned reviewer - either manager or application owner or whoever is assigned as the designated reviewer), the request shall get fulfilled immediately (either provisioned or de-provisioned, depending on whether its a GRANT or REVOKE request).
If the fulfillment option for an application integration is selected to be direct integration and auto approved provisioning, then a request GRANT shall automatically result in provisioning of the request in the respective application. Similarly, a request REVOKE shall automatically result in de-provisioning of the request in the respective application. All of these are event driven, which means the provisioning/de-provisioning act happens immediately.
If an identity for an employee does not exist in an application, BalkanID will automatically create a new identity, corresponding to the access request.
Users, Risk managers and IT administrators can view the list of access requests they have created, along with their progress on the BalkanID dashboard.
Users, Risk managers and IT administrators can view the list of completed access requests on the BalkanID dashboard.
The full audit trail of an access request, starting from creation till the provisioning or de-provisioning is recorded within BalkanID and available to be viewed or downloaded as a report anytime, for audit purposes.
Note: You may see different completion percentages in your My Tasks tab and Access Requests tab for multi level reviews. My Tasks will reflect how much of the actions needed to be taken by you, are completed for a given access request. Whereas Access Requests shows how many total actions by all the reviewers for an Access Request are completed for a given Access Request.
