1. Data Management
  2. Security and Compliance Studio
  3. Activities

Approve security request
Application task

Usually, a security manager must approve the security request before it is implemented.

How the approval process is done depends on the setup:

  • An approval workflow is active: Approve the security request using the approval workflow.
  • No approval workflow is active: Manually approve the security request.

When you review the security request, on the Security requests page, on the Action Pane, on the Requests tab, you can:

  • View the related record, if defined.
  • Change the priority.

Once approved, the security request is implemented automatically.

If dynamic snapshots are enabled, the implemented security configuration changes are updated automatically in the latest snapshot.


Standard procedure

1. Click Security management.
2. On the Requests tab, in the list, click the link of the desired security request.
3. Sub-task: Approve using approval workflow.
  3.1 Click Workflow.
  3.2 Click the desired action that defines the next workflow step and status. For example, click Approve.
  3.3 On the dialog, in the Enter a comment field, type a value.
  3.4 Click OK.
 

Note:

On approval, a segregation of duties (enhanced) validation is done. If a conflict is found, the request is not approved. Depending on the workflow setup, the request status is set to 'Change request' or 'Cancelled'. To continue with the request, resolve the conflict.
4. Sub-task: Approve manually.
  4.1 To indicate that the approval of the security request has started, set the status to Review.
  Click Status.
  4.2 Click Review.
  4.3 When you have finished the approval of the security request, indicate the approval outcome.
  Click Status.
  4.4 Click the desired status, for example, Approved.
 

Note:

  • If you need, for example, additional information on the security request, you can reject or re-open it. Also, change the ownership to the Created by user. The Created by user can make changes to the security request only if the status is Open or Rejected.
  • On approval, a segregation of duties (enhanced) validation is done. If a conflict is found, the request is not approved. To continue with the request, resolve the conflict.
5. Close the page.

Notes

From/to date

For several security request types, you can set a From date and To date to define the period when the requested security setup change is valid.

When the request is approved:

  • If the defined period starts in the future, the Implement approved security requests batch job applies the change on the From date.
  • If the defined period has already started, the change is applied immediately.

The Implement approved security requests batch job undoes the change on the To date.

Note: The Implement approved security requests batch job is configured and started automatically when you install Security and Compliance Studio.

Notification email

If you approve a security request of type ‘Assign role to user’, and the assigned role gives access to sensitive data, a notification email is sent based on the Sensitive role notification setup. The email is sent to the relevant user and, if defined, to other users as well.

Note: If no applicable notification setup exists, no email is sent.

Related to Notes

Manage security requests

 		 

See also

Provide feedback