Requesting roles by application
You can use the Self-Service provision functionality to request access to individual roles based on the applications.
- Select Manage > Provisions on the navigation bar. The Provisions tab is displayed.
-
Click the Self-Service tab and click
New to select the Roles By Application option. The
Self-Service page is displayed.
Note: Alternately, you can also click the arrow option to review the violations generated by a provision and perform an action, if required. See, Reviewing Self-Service Provision details.
-
Specify this information:
- Provision for User
- The logged on user name is displayed by default. This field can not be modified.
- Data Source
- The Data Source specified on the
Configurations page is displayed by
default. This field cannot be modified.Note: If a Data Source specified on the Configurations page is deleted, the application displays ‘No Data Source available for Self Service. Contact GRC Admin’ message.
- Application Instance
- The Application Instance linked to the selected Data Source.
- Add Roles
- The new roles for the logged on user. You can use this
panel to:
- Add new roles, using the Add Role option.
- Revoke assigned roles, using the Revoke option. Note: Roles associated with multiple application instances are not revoked.
- Undo a role assignment, using the Undo option.
- Comments
- Comments, if required.
- Click Save. The Self-Service Provisions are displayed on the Provisions tab as a Role Access Management(RAM) Provision and on the Self-Service tab on the Provisions page. Logged on users can view only the self-submitted provisions on the Self Service tab. The Self-Service Provisions can also be tracked from the Tasks page.