Implementation Guide
Access Request - Module Implementation Guide
Access Requests provides a platform to Submit, Approve, and Apply Security Changes in PeopleSoft. It streamlines requesting access and eliminates email or paper requests.
Managers and functional leads can view an employee’s current PeopleSoft access and submit a request for roles to be added or removed.
Implementing the Access Requests module requires proper planning, configuration, and training to ensure that Sentinel is configured to support your business process. The following document outlines the process and setup options to consider for implementation:
Sentinel Workflow Stages
The Requests module can be used without pre-configured workflows but requires the requesters to select the approvers manually. Workflows can be created to support various approval requirements and eliminate the need for requesters to select approvers.
Create a New Request for a security change in PeopleSoft.
1. Select User
Search and select an existing User or create a new user.
2. Select Roles
Select Roles to be added/removed or leave blank.
3. Select Permissions lists
Select row security or profile permission lists.
4. Add Attachments
Add file or image attachment.
5. Enter Comments
Comments can be used when requesting security or to add notes.
6. Workflow
Manually select Reviewer and Approvers, or use default options based on Workflow jobs.
User Types
Users given access to the Request module can only see the requests they send or receive. Sentinel or Access Request Administrators can see all requests and make changes to the permissions or approvers.
#
Settings
Create
Edit
Approve
Comments
1
Requester
A person who is allowed to create a ticket.
✔️
✔️
Requesters can only view tickets sent or received.
2
Reviewer (Optional)
A person who is allowed to modify the request and select roles before the ticket is sent for approval.
✔️
3
Approver
The person who is designated on the request ticket to approve/deny access.
✔️
Approver cannot modify access on tickets but can change approvers.
4
Backup Approver (Optional)
A secondary person who is designated on the request ticket to approve/deny access.
✔️
5
Notify
Send to a group mailbox to notify multiple users.
The notify field is used for group mailboxes.
Configuration Settings
Configurations provide additional options for setting up the request module. Some items will require additional setup before they can be used.
#
Settings
Req / Opt
Description
1.1
Request users can be restricted to viewing only specific users or roles.
Required
Environment Access - Select a security profile to grant a user access to a PS environment.
*Security profiles can be configured to grant a user View or Update access to Sentinel modules, pages, and reports.
User Access - Access to Users can be restricted to specific Business Units and/or Departments.
Role Access - Access to Roles can be restricted using static or dynamic role groups.
1.2
Automatically create new user accounts.
Optional
SSO can be used to authenticate users and automatically create new user accounts.
2
A request admin can view and edit all tickets.
Optional
The request admin is traditionally a functional lead or analyst who assists in verifying requested access or selecting the appropriate roles before the ticket is sent for approval.
3
Create default approval routings.
Optional
Automatically display preselected approvers based on org criteria.
4
Specify approvers for selected Roles.
Optional
Role approvers can be defined for roles that require approval from specific people.
5
Training Requirement
Ability to mark roles that require training certification before a role can be assigned.
Optional
Roles that require training will not be assigned until the training is marked as completed.
6
Automatically apply changes to PeopleSoft.
Optional
Approved requests can be automatically applied to PeopleSoft.
7
Restrict users to only seeing specific PS roles.
Optional
Create Static or Dynamic Role Groups to limit the roles that a Request user can see.
Last updated