Now Hiring: Are you a driven and motivated 1st Line IT Support Engineer?

Conducting Access Review’s as a Manager/Reviewer

Table of Contents

This article continues the reviewer’s journey towards completing Access Reviews within SecurEnds. If you have not seen the previous article on “how to log in as a reviewer”, please see here.

Conducting an Access Review #

After logging in we will be taken to this screen to conduct reviews.

I have campaigns assigned to me. I will select the “Open Campaigns” box to view the campaigns.

I can see the list of campaigns for which I have reviews assigned to me. Select “Begin Review” to be taken to the review screen for a particular campaign.

Once you begin a campaign, there are four (4) relevant pieces of information:

  • The Green Box at the top
    • This box will provide additional instructions for the campaign. This verbiage was provided by your SecurEnds company admin.
  • The User’s Names
    • Under the “Direct Report Access Review” column, all “users” associated with this review are listed. The names will disappear as you complete the access review for each “user”.
  • Review
    • The blue “Review” button is to be clicked when wishing to review the credentials and any entitlements associated to the “user”.
  • Action
    • The drop down will present 2 options.
      • Update Manager Comments – Optional comments can be entered for the “user” by the reviewer.
      • Termination Date – If a date is known for the “user” being terminated, enter that date and Save. The access reviews for that “users” will be removed from the reviewers scope (the number Pending will move to 0).

Upon clicking “Review” next to a “user”, the below screen appears. In the top box, I will see the information: Campaign Name, Reviewer (me), Person under review, Email of the person, and their status within the System of Record. This status could be Active or Inactive meaning they no longer have access to the core system of record, implying they have been terminated.

Under “Application”, I will see the application to which the user has access. In this instance, it is AD Sam Account.

Under “Description”, I will see any meaningful description associated with the entitlement if provided by the application owner.

Under “Status”, I will see the status of the user’s credential. In this instance it is active.

Under “Action”, is where I can make my elections for the review. I can Approve or Revoke or click the icon to the right of Revoke to leave a note (see note window below). NOTE: If I revoke a credential, all entitlements will be toggled to Revoke as well.

I have made my elections and I am ready for the next user to review. The buttons at the top of the previous screenshot “Approve All, Revoke All, Save, Next, and Back” do just that. I can quickly approve or revoke accesses with approve/revoke all.

NOTE: “Next” functions as a next and save. It will save my elections and pull up the next user to be reviewed. Upon reaching the last review, no next button will appear, be sure to “Save”!

Upon clicking back, a pop up will show me the remaining number of entitlements that need to be reviewed.

Upon completing all reviews assigned to me, I will receive a similar popup signaling all reviews are complete. Thanks for reading and happy reviewing!

Powered by BetterDocs

open

It’s official, SecurEnds raises $21M Series A! For more details, check out our Press Release and a message from our CEO.