# Implementation Guide **Access Requests** provides a platform to [**Submit**](/sentinel-help-center/access-requests/submit-new-request.md), [**Approve**](/sentinel-help-center/access-requests/review-and-approve-requests.md), and [**Apply Security Changes**](/sentinel-help-center/access-requests/apply-changes.md) in PeopleSoft. It streamlines requesting access and eliminates email or paper requests. Managers and functional leads can view an employee’s current PeopleSoft access and submit a request for roles to be added or removed. ## [Project Stages ](#user-content-fn-1)[^1] Implementing the Access Requests module requires proper planning, configuration, and training to ensure that Sentinel is configured to support your business process. \ \&#xNAN;*The following document outlines the process and setup options to consider for implementation:* {% tabs %} {% tab title="1. Requirements" %} #### **Current Process** Document current business process. #### **Sentinel** Review Sentinel functionality and configuration options. #### **Gap Analysis** Identify gaps, limitations, and required configurations. #### Dynamic Security Determine if dynamic security jobs can be used to reduce repetitive role assignments. {% endtab %} {% tab title="2. Planning" %} #### **Identify Users** Identify Requesters, Approvers, and Request Administrators.\ \- Define [**Security Profiles**](/sentinel-help-center/settings/sentinel-accounts.md#security-profiles)\ \- Define [**User Access** ](/sentinel-help-center/settings/sentinel-accounts.md#user-access)\ \- Define [**Role Access**](/sentinel-help-center/settings/sentinel-accounts.md#role-access) **Define Workflows** Identify criteria and approvers for existing workflows. #### **Define Settings** Review configuration settings and determine if any additional setup is required. {% endtab %} {% tab title="3. Development" %} #### Create Workflows Build test workflows in Sentinel. \ \- Settings / Users / Accounts / Security Profiles. #### Create Test Accounts Create user accounts and assign security profiles to Requesters and Approvers. \ \- Settings / User Accounts {% endtab %} {% tab title="4. Testing" %} #### User Training Train test Requesters and Approvers on the AR module. #### Test User Security Verify test users can log in with password/SSO. \ \- Submit Request \ \- Review / Modify \ \- Approve / Deny\ \- Admin Appy Changes #### Test Workflows Verify the correct approvers are selected for the workflow criteria. {% endtab %} {% endtabs %} ## Sentinel Workflow Stages The Requests module can be used without pre-configured workflows but requires the requesters to select the approvers manually. Workflows can be created to support various approval requirements and eliminate the need for requesters to select approvers. {% tabs %} {% tab title="1. Submit" %} *Create a New Request for a security change in PeopleSoft.* **1. Select User** Search and select an existing User or create a new user. #### **2. Select Roles** Select Roles to be added/removed or leave blank. #### **3. Select Permissions lists** Select row security or profile permission lists. #### **4. Add Attachments** Add file or image attachment. #### **5. Enter Comments** Comments can be used when requesting security or to add notes. #### **6. Workflow** Manually select Reviewer and Approvers, or use default options based on Workflow jobs. {% endtab %} {% tab title="2. Review (Optional)" %} *Assign a Reviewer to review the request before it is sent for approval. (This is an optional stage of the workflow.)* #### Reviewer Reviewers can review and modify requests, including adding or removing roles. They can only view the user requests they receive (are assigned to). {% hint style="info" %} To allow access to *view all user requests*, a Reviewer must be assigned Access Request Admin privileges on their [Sentinel Account - Admin Menus](/sentinel-help-center/settings/sentinel-accounts.md#admin-menus). {% endhint %} {% endtab %} {% tab title="3. Approve" %} *Assign an Approver or Backup Approver (Optional) to approve or deny a request.* #### **Approver 1** Approvers can only approve or deny requests with a reason. They *cannot* make changes to the request. #### **Backup Approver (optional)** Backup Approvers can approve or deny requests if Approver 1 is unavailable. They *cannot* make changes to the request. {% endtab %} {% tab title="4. Apply Changes" %} *Apply approved security changes to PeopleSoft.* #### **Update PeopleSoft** Only Sentinel or Access Request Administrators can apply approved changes to PeopleSoft. They can also make changes to a request if needed or re-route for additional approval. #### Auto-Provision Approved Requests Approved requests can be automatically applied to PeopleSoft using [**auto-provisioning settings.**](/sentinel-help-center/access-requests/apply-changes.md#auto-provisioning) {% endtab %} {% endtabs %} ## User Types Users given access to the Request module can only see the requests they send or receive. Sentinel or Access Request Administrators can see all requests and make changes to the permissions or approvers.
#SettingsCreateEditApproveComments
1

Requester

A person who is allowed to create a ticket.

✔️✔️
Requesters can only view tickets sent or received.
2

Reviewer (Optional)

A person who is allowed to modify the request and select roles before the ticket is sent for approval.


✔️

3

Approver

The person who is designated on the request ticket to approve/deny access.



✔️Approver cannot modify access on tickets but can change approvers.
4

Backup Approver (Optional)

A secondary person who is designated on the request ticket to approve/deny access.



✔️
5

Notify

Send to a group mailbox to notify multiple users.




The notify field is used for group mailboxes.
## Configuration Settings Configurations provide additional options for setting up the request module. Some items will require additional setup before they can be used.
#SettingsReq / OptDescription
1.1

User Security

Request users can be restricted to viewing only specific users or roles.

Required

Environment Access - Select a security profile to grant a user access to a PS environment.

*Security profiles can be configured to grant a user View or Update access to Sentinel modules, pages, and reports.

User Access - Access to Users can be restricted to specific Business Units and/or Departments.

Role Access - Access to Roles can be restricted using static or dynamic role groups.

1.2

Single Sign-On

Automatically create new user accounts.

OptionalSSO can be used to authenticate users and automatically create new user accounts.
2

Access Request Admin

A request admin can view and edit all tickets.

OptionalThe request admin is traditionally a functional lead or analyst who assists in verifying requested access or selecting the appropriate roles before the ticket is sent for approval.
3

Workflows

Create default approval routings.

OptionalAutomatically display preselected approvers based on org criteria.
4

Role Approvers

Specify approvers for selected Roles.

OptionalRole approvers can be defined for roles that require approval from specific people.
5

Training Requirement

Ability to mark roles that require training certification before a role can be assigned.

OptionalRoles that require training will not be assigned until the training is marked as completed.
6

Auto-Provisioning

Automatically apply changes to PeopleSoft.

OptionalApproved requests can be automatically applied to PeopleSoft.
7

Role Groups

Restrict users to only seeing specific PS roles.

OptionalCreate Static or Dynamic Role Groups to limit the roles that a Request user can see.
[^1]: --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://help.sentinelsoftware.com/sentinel-help-center/access-requests/implementation-guide.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.