1. Request
Users can request accesses on-demand using the shortcut/request or a button on the home tab of the AccessOwl Slack app.
Here’s how it works:
- Only if you don’t have a manager set: You’re asked to provide the name of your manager.
- By default access requests need to be approved by your direct manager.
- After approval, provisioning requests with all the necessary details are sent to the responsible application admins or to AccessOwl for automated provisioning.
Special Request Type: No Permission Selection Required
For certain applications, you may not want users to choose their own permission level. Instead, let them describe the access they need in a freeform text field. The application admin can then review the request and assign the correct permission level.Setup
To set up an application to not require a permission selection, open the apps roles/permission and unselect the following checkbox:
Example
2. Approval
AccessOwl offers different options for approval policies, which are managed by your AccessOwl Org Admins. The default option is manager approval. A manager will be asked to approve your access request. They have the option to either approve or deny. You will receive a notification after the approver has made a decision.3. Provisioning
The final step is the creation of the requested access. Depending on whether the application is managed by an internal application administrator or via an integration of AccessOwl, there are two options:- App without integration
- App with integration
After the access has been approved, the application administrator receives a notification in Slack. They have the option to grant or reject the access. You will be informed when the application administrator has finished the task. If rejected, you will also be provided with a rejection reason.