We have a workflow that runs on a schedule trigger. It does the following:
Checks the Pending Access Requests for a particular Reviewer.
Approve Request if training has been completed
Deny Request if training hasn’t been completed
Right now the approval logs show the Owner of the Workflow as the identity that approved or denied the request, we would like to change the Owner so that it is the same as the Reviewer in step 1 above.
Does the Reviewer need any particular Role in ISC to be able to run the Workflow?
Workflow owners is always the admin who create the workflow or you can change it manually.
Are you talking about the owner of the access item that belong to the identity ? If yes, then that will always be the identity as it was create with respect to that not the reviewer.
You could use a HTTP action within the workflow to forward the access request to the actual approver you want before the approve or deny action using this API;
You should be able to call $.trigger.requestedBy.id and use this as the approver value in the body of the HTTP action.
Once the approver is updated the workflow should approve/deny it under the desired owner.
Also, potentially add a wait action to make sure the new owner is set before the approver action takes place.
When the Workflow approves/denies the request, the log shows the decision as being done by the Workflow Owner. We would like the Workflow to run as the Reviewer, so that the logs show the Reviewer instead of the Admin that setup the workflow.
I am aware that we can change the Workflow Owner, but I am wondering if the new Owner needs any particular ISC roles to be able to run the Workflow.