Performing Access Reviews
Last updated
Was this helpful?
Last updated
Was this helpful?
The BalkanID application has a main menu item called Access Reviews. This will give the risk manager a list of all access reviews in the system. These include pending, in-progress, completed and overdue access reviews. This menu item is available for administrators and risk managers of BalkanID only.
A user can see Access reviews in 3 different views based on granularity:
Access Review By Identity - These access reviews are based on unique identities and access to an application irrespective of the connections, resources or fine grained permissions they have been provisioned. Each row represents a unique identity within an application.
Access Review By Connection - These access reviews are based on unique identities-connection combinations within each application, irrespective of the resources and fine grained permissions they have been provisioned. Each row shows what connections each identity is associated with in an application.
Access Review By Resource - These access reviews are based on unique identities-resource combinations within each application, irrespective of the connections and fine grained permissions they have been provisioned. Each row shows what unique resource does an identity have access to in an application.
1. Select the access reviews you would like to work on.
2. Click on the Bulk Actions button in the Access Reviews page.
3. Perform one of the below operations on the access review:
Approve - Approve access for the permission
Deny - Deny access for the permission
Reassign - Reassign access review to a new reviewer
Comment - Add a note or request more information
Users with the Reviewer role can view access reviews from the main menu item My Tasks via which they can search, sort, and select access reviews that are on their task list to be completed as shown below:
Clicking on the Review button will take you to the below page where you can view all the access reviews assigned to you.
A user can see Access reviews in 3 different views based on granularity:
By Identity - All the access reviews have been grouped by identity. Each row represents a unique identity within an application.
By Connection - All access reviews in this view have been grouped by connections. You can see what connections each identity is associated with in an application.
By Resource - All access reviews have been grouped by resources. Each row shows what unique resource does an identity have access to in an application.
1. Select the access reviews you would like to work on.
2. Click on the Bulk Actions button in the Access Reviews page.
3. Perform one of the below operations on the access review:
Approve - Approve access for the permission
Deny - Deny access for the permission
Reassign - Reassign access review to a new reviewer
Comment - Add a note or request more information
Note - To carry out de-provisioning after an access review has been denied, please refer to this article for detailed instructions on enabling de-provisioning Fulfillment Options
Additionally, the two icons on the right of the access review table, provide the following sets of details:
Note - To carry out de-provisioning after an access review has been denied, please refer to this article for detailed instructions on enabling de-provisioning
You can make use of the graph view for performing actions on reviews. Refer to for more information to use this view to take actions on reviews.
Review details (): This view allows you to find information about the campaign the access review belongs to and the reviewer assigned. You can also see the activity log for this review with timestamps.
Resource detail status(): This shows the resources that the access review is associated with. You can see the permissions that are associated with this resource which are actioned on/yet to be actioned on.