Requesting Access Role Request

Overview

Access Role Request allows you to easily request roles for servers or Kubernetes clusters that need access. Roles are granted immediately upon approval, and you can access servers or Kubernetes clusters allowed by the role.

Access Role Request

1. Selecting Approval Rules

• Select an Approval Rule to choose the appropriate approval rule for your purpose. The approval target varies depending on the selected rule.
• If a pre-configured approval rule is selected, the approver is automatically assigned and cannot be added or modified.
• Approval Expiration Date: Enter the approval expiration date. The maximum value can be set through Maximum Approval Duration. The Approval Expiration Date cannot exceed the Role Expiration Date. If exceeded, the request cannot be submitted.
  • However, when submitting in Urgent Mode, the above condition is ignored.

2. Assigning Approvers

• Click the + button in the approval line to display a popup window where you can assign step-by-step approvers.
• In this popup window, add approval conditions and approvers, then click the Save button to save the approval line.
• Available approval conditions are as follows:
  • A single Assignee can complete the approval request: The approval request is approved with just one approval from multiple people.
  • All Assignees must approve this request: All approvers must approve for the approval request to be approved.

3. Assigning Reviewers

• Click the + button in the approval line to display a popup window where you can assign reviewers.
  • If the administrator has not allowed reviewer assignment, the Reviewer box will not be displayed.
• In this popup window, add approval conditions and approvers.
• Click the Save button to close the modal and complete reviewer assignment.

4. Sending Request with Post-Approval

• If you select an approval rule that allows post-approval functionality, the Urgent Mode switch will be displayed.
• After setting Urgent mode = On and registering the approval request, you can immediately receive permissions or perform tasks.

5. Selecting Target Role

1. Service: Select the target service for the request. You can select Server Access Control or Kubernetes Access Control.
2. Role: Select the role to request from the role list displayed according to the selected service. (Single selection)
3. According to the selected service and role, the following information is displayed in the list:
   1. Server Access Control: Accessible server group names, server names, account names
   2. Kubernetes Access Control: Accessible Kubernetes cluster names, platforms, API URLs

1. Role Expiration Date: Select the expiration date when the permission will be revoked.
   • The expiration date is a required value, and if not set separately, it defaults to one year later.
   • It is recommended to request only the period necessary for appropriate connection access permission management.

6. Entering Request Information

• Title: Enter the request title.
• Reason for Request: Enter the reason for requesting access permission.
• Submit: If you have completed all the requests, click the Submit button to complete the request submission.