To understand the workflow of the entitlements system, you must review the concepts that are related to the entitlements system.
The workflow of the entitlements system starts with marking an asset as a control point and ends with the generation of the entitlements reports. The entitlements reports include the Effective Permissions Report, the Simple Permissions Report, the Entitlement Changes Report, and the Trustee Report.
See About the control point status.
The users in the role of an entitlement administrator and the entitlements data owner perform the tasks in the entitlements system.
See Predefined roles.
The tasks in the entitlements system can be divided as follows:
You can perform the following manual tasks in the entitlements system based on your role:
When you configure the control point with a review cycle the entitlements system transitions the control points in various states. The states are based on the review cycle status.
The control point status changes from Review Start Awaited to Review Started when the review cycle starts. The system starts the review cycle on the start date that is specified in the review cycle setting.
The system then changes the control point status from Review Started to Entitlement Import Required. The Entitlement Import Required status is set according to the number of days specified for importing the entitlements before the approval starts.
The control points status changes from Approval Start Awaited to Request for Approval when the approval period starts. The approval period starts on the approval start date that is specified in the review cycle setting.
Request for Approval |
The entitlement administrator requests the approval of entitlements when the approval period starts. After the entitlement administrator requests for approval, the data owner can either approve the entitlements or request changes in the entitlements. |
Approve the control points |
The data owner can view the entitlements for the control points and approve the control points from the My Control Points view. The alternative approver can also approve the control points if the alternative approver is enabled. After the approval, the control point status changes to Approved. |
Request changes in entitlements See Alternative approver. |
The data owner can request changes in the entitlements of the control points. The control points status changes to Request for Change. |
Request for Approval |
The entitlement administrator can request for approval again when the IT department implements the change requests of the data owner. The entitlement administrator must import the entitlements again. When the entitlement administrator requests for approval of the control points for which a change is requested, the status changes to Entitlement Import Required. |
Import entitlements |
The entitlement administrator must import the entitlements before the approval starts. The entitlements are then available for the data owner for approval. If the automatic entitlement import is not configured, the entitlement administrator must import the entitlements manually. The control point status changes from Entitlement Import Required' state to Entitlement Import Pending when the entitlements import is in progress. When the entitlement import is complete the system changes the control point status to Request for Approval. The data owner can now approve if the entitlements are as expected or again request for change if the entitlements are not as expected. |