Request temporary access

This topic describes how to make a one-time request for access to a web app that isn't in the User Portal, or for elevated permissions to an available web app.

Overview

SCA policies determine what web apps are available in the User Portal, along with the level of privileges you have within those web apps. If you need to access a web app that doesn't appear in your User Portal or if you need additional permissions on an available web app to perform a task, you can make a one-time request for temporary access.

Request temporary access to a web app

Step 1: Create the request

  1. If you don't see the web app you need in the User Portal, do the following:

    1. Click Add Apps.

    2. In the App Catalog, click the DevOps category and search for the web app you need.

      Search by web app name, not by cloud provider.

    3. Next to the relevant web app, click Request.

  2. If you see the web app you need in the User Portal, click it.

  3. If you don't see the role, permission set, or scope that you need in the list, click Request access.

Step 2: Provide the web app and request details

Complete the request access page as follows.

  1. Provide the general details:

    General request details

    Item

    Description

    Reason

    Why you are requesting access to this web app.

    Ticket number

    (Optional) If you open a request in your organization's ticketing system, it may speed up the approval process to provide the ticket number in the access request.

  2. Provide the web app details:

    Web app details

    Item

    Description

    AWS IAM

    Account

    (Read only) The account you selected..

    Cloud role

    Provide the available role.

    AWS IAM Identity Center

    Account

    Provide the name or ID of the account.

    Permission set

    Provide the name of the permission set.
    Web app details

    Item

    Description

    Resource level

    Provide the name of the the organization, folder, or project.

    Resource name

    Provide the name of the resource.

    Role

    Provide the role name.
    Web app details

    Item

    Description

    Azure resource roles

    Tenant

    (Read only) The name of the Azure tenant.

    Scope

    Provide the scope name.

    Resource

    Provide the resource name.

    Resource role

    Provide the resource role name.

    Azure AD

    Tenant

    (Read only) The name of the Azure tenant.

    AD role

    Provide the AD role name.

  3. Define the access window:

    Access window

    Item

    Description

    Time zone

    Select a time zone from the dropdown list.

    Date

    Select the date when you want to access the web app.

    Time

    Define the time window for when you want to access the web app:

    • To define a specific time of day, use the From and To fields.

    • To define a general session length without specifying the time of day, select an option from the Session Length field.

  4. Click Send request. You will receive a confirmation email that your request was received.

When the request is handled, you will receive an additional email with your request details notifying you whether your request was approved or rejected.

If your request was approved, you can connect to the web app during your specified access window as described in Connect to your cloud environment.