If a user's access is subject to a time-based entitlement in Access Panel, and no extension request is submitted or approved before the access expiration date, the system will automatically revoke access. This behavior ensures that access to sensitive systems or data is not retained longer than necessary, supporting both security and compliance objectives.
How It Works
Access Panel uses defined policies to manage time-limited access to resources. These policies often include:
-
Just-in-Time (JIT) access: Granting access temporarily based on specific business needs
-
Request policies: Enabling users to request new or extended access through a defined workflow
-
Expiration dates: Automatically removing access when it is no longer valid
When access is granted under these policies, a lifecycle begins that includes the expected end date. If a user does not initiate a request to extend access—or if an extension request is denied or left unapproved—Access Panel takes action to revoke that access once the expiration date is reached. This automatic removal is built into the platform to minimize risk from dormant or outdated permissions.
Comments
0 comments
Article is closed for comments.