Software access requests
How employees request access to an application and how approvers review, approve, deny, or revoke that access. For employees (requesters), application owners, and admins.
Before You Begin
- Access requests must be enabled on the application. An owner or admin turns this on under the application's Security Posture tab.
- Approvers need permission to decide requests. See Permissions & Access Control for Software.
- Requests are reviewed against a service-level target of 2 business days.
Employees submit and track their requests in the Portal — the simplified, self-service site they sign in to with a magic link.
Step 1: Open Access Requests
- Sign in to the Portal.
- In the navigation, open Access Requests.
You'll see your existing requests, each with its application, role/scope, status, priority, and submitted date.
Step 2: Submit a new request
- Click New Request.
- Fill in the slide-over form:
- Application — choose from the applications open to requests.
- Role / scope — the access level you need.
- Duration — Permanent or Temporary (if temporary, set an end date).
- Priority — Low, Normal, High, or Urgent.
- Business justification — why you need access.
- Click Submit.
A confirmation appears, and the request is routed to the application's approver.
Step 3: Track your request
Your request shows its current status on the Access Requests list. Statuses move from Pending through to Approved/Provisioned, Denied, or Needs Info (the approver has asked you for more detail).
For Approvers & Admins: Reviewing Requests (Main App)Approvers and admins manage requests from the main application.
Step 1: Open the Access Requests index
- In the left navigation, open Software → Access Requests.
The page opens with summary cards (Pending Review, Approved, Provisioned (30 days), and Avg. time to approve against the 2-business-day target), and a grid of requests.
Use the tabs to focus the list: All, Pending, Mine (requests you submitted), and Awaiting my approval. Filter by Status, Priority, Application, or Submitted date. Overdue requests show a red warning icon next to their request number.
Step 2: Open a request
- Click a request's number (for example AR-1042).
A panel slides in from the right showing the application, role/scope, requester, approver, priority, duration, submitted date, the business justification, and an activity timeline of everything that's happened.
Step 3: Make a decision
When the request is Pending or Needs Info, the action bar offers:
- Approve & provision — approves the request and provisions access. The requester is notified.
- Deny — you'll be asked for a required note explaining why.
- Request more info — you'll be asked for a note; this sends the request back to the requester for more detail.
When a request is already Provisioned, the action bar offers Revoke to remove access.
Note: If you try an action that isn't valid for the request's current status, you'll see an error message rather than a silent change. Every decision is recorded in the activity timeline.
Step 4: Export the list
Click Export on the Access Requests page to download the grid for reporting.
Tips & Best Practices- Approvers: aim to clear requests within the 2-business-day target — the summary card tracks your average.
- Requesters: a clear business justification speeds up approval.
- Use Temporary duration for time-boxed access so it's easy to review later.
- Issue: An application isn't in the Portal request list. Solution: Access requests aren't enabled for it. Ask the owner/admin to enable it on the Security Posture tab.
- Issue: I can't see the decision buttons. Solution: Deciding requests requires the decide permission. Ask an admin to update your role.
- Issue: A request is overdue. Solution: Open it and either approve, deny, or request more info — the overdue flag clears once it leaves the pending state.