Requesting roles by application

You can use the Self-Service provision functionality to request access to individual roles based on the applications.

  1. Select Manage > Provisions on the navigation bar. The Provisions tab is displayed.
  2. Click the Self-Service tab and click New to select the Roles By Application option. The Self-Service page is displayed.
    Note: Alternately, you can also click the arrow option to review the violations generated by a provision and perform an action, if required. See, Reviewing Self-Service Provision details.
  3. Specify this information:
    Provision for User
    The logged on user name is displayed by default. This field can not be modified.
    Data Source
    The Data Source specified on the Configurations page is displayed by default. This field cannot be modified.
    Note: If a Data Source specified on the Configurations page is deleted, the application displays ‘No Data Source available for Self Service. Contact GRC Admin’ message.
    Application Instance
    The Application Instance linked to the selected Data Source.
    Add Roles
    The new roles for the logged on user. You can use this panel to:
    • Add new roles, using the Add Role option.
    • Revoke assigned roles, using the Revoke option.
      Note: Roles associated with multiple application instances are not revoked.
    • Undo a role assignment, using the Undo option.
    Comments
    Comments, if required.
  4. Click Save. The Self-Service Provisions are displayed on the Provisions tab as a Role Access Management(RAM) Provision and on the Self-Service tab on the Provisions page. Logged on users can view only the self-submitted provisions on the Self Service tab. The Self-Service Provisions can also be tracked from the Tasks page.