To ensure security compliance or audit readiness you can perform identity access
reviews to check your direct reports areas and roles access. These periodic reviews are
completed by a supervisor.
What you should know
Supervisors can complete an identity access review from the My
tasks page of the Dashboard or from an email
notification.
No changes can be made to an access
review after it has been completed.
All
Completed reviews are retained for audit and tracking
purposes.
Procedure
Click Dashboard
> My tasks.
In the My tasks list, click the identity access
review that you require.
Click Continue review.
In the Access control section, review the access control.
(Optional) If you want to extend the amount of time doors are unlocked (after
access is granted) for cardholders with the property "extended grant time" turned on,
select the Person requires extended grant time
checkbox.
(Optional) Enter or select an Activation dateMM/DD/YYYY and time HH:MM.AM for the
cardholder.
If the activation fields are left blank the default current date and time are
used.
(Optional) Enter or select an Expiration dateMM/DD/YYYY and time HH:MM.AM for the
cardholder.
When the expiration fields are blank, the cardholder never expires.
Click Approve to approve the access control settings.
Note: After an Activation date or Expiration
date has been specified, you must include a time. Otherwise, the
Approve button is disabled.
(Optional) If you change your mind about the settings, you can repeat the previous
steps to make further modifications and then click Approve
again.
Click Next to continue to the
next section of the access review wizard.
In the Area access section, review the area access.
Click Keep access () to confirm that access is still
valid.
Tip: Use Approve all
remaining to speed up approval process when the list is long, then
remove any access that is no longer required.
Click Remove access () to remove access that is no
longer required.
(Optional) Select Show already
reviewed to go back and make modifications.
Click Next to continue to the
next section of the access review wizard.
In the Roles section, review roles.
Verify the role information and either Keep access or
Remove access as required.
Click Next to continue to the
next section of the access review wizard.
In the Automatically assigned roles section, review the
automatically assigned roles.
The automatically assigned
roles information here is useful context for a supervisor to review for accuracy
and understand. It includes other access direct reports might have in addition to their
manually assigned area access.
Note: Supervisors cannot modify any of this information
because the roles were automatically assigned based on setup performed by an account
administrator. If any automatically assigned roles information is no longer applicable,
the account administrator should be contacted.
In the Review section, verify that the review details are
correct.
In the Additional notes section, add
any notes that you require.
Before you click Complete, review the
changes summary immediately after the Additional notes
section.
(Optional) If any of the information looks incorrect, click
Back to return to previous sections and modify your
changes.
If the Review section details are
correct, click Complete.
Repeat this process as required for each identity listed in your My
tasks dashboard inbox.
) to confirm that access is still
valid.
Tip: Use Approve all remaining to speed up approval process when the list is long, then remove any access that is no longer required.
) to remove access that is no
longer required.
Note: Supervisors cannot modify any of this information because the roles were automatically assigned based on setup performed by an account administrator. If any automatically assigned roles information is no longer applicable, the account administrator should be contacted.