Skip to main content

Get Access Request Configuration

GET 

https://sailpoint.api.identitynow.com/beta/access-request-config

This endpoint returns the current access-request configuration.

Responses

Access Request Configuration Details.

Schema
    approvalsMustBeExternalboolean

    If this is true, approvals must be processed by an external system. Also, if this is true, it blocks Request Center access requests and returns an error for any user who isn't an org admin.

    Default value: false
    Example: true
    autoApprovalEnabledboolean

    If this is true and the requester and reviewer are the same, the request is automatically approved.

    Default value: false
    Example: true
    reauthorizationEnabledboolean

    If this is true, reauthorization will be enforced for appropriately configured access items. Enablement of this feature is currently in a limited state.

    Default value: false
    Example: true
    requestOnBehalfOfConfig object
    allowRequestOnBehalfOfAnyoneByAnyoneboolean

    If this is true, anyone can request access for anyone.

    Default value: false
    Example: true
    allowRequestOnBehalfOfEmployeeByManagerboolean

    If this is true, a manager can request access for his or her direct reports.

    Default value: false
    Example: true
    approvalReminderAndEscalationConfig object
    daysUntilEscalationint32nullable

    Number of days to wait before the first reminder. If no reminders are configured, then this is the number of days to wait before escalation.

    Example: 0
    daysBetweenRemindersint32nullable

    Number of days to wait between reminder notifications.

    Example: 0
    maxRemindersint32nullable

    Maximum number of reminder notification to send to the reviewer before approval escalation.

    Possible values: >= 1

    Example: 1
    fallbackApproverRef objectnullable
    typestring

    The type can only be IDENTITY. This is read-only.

    Example: IDENTITY
    idstring

    Identity ID.

    Example: 5168015d32f890ca15812c9180835d2e
    namestring

    Identity's human-readable display name. This is read-only.

    Example: Alison Ferguso
    emailstring

    Identity's email address. This is read-only.

    Example: alison.ferguso@identitysoon.com
    entitlementRequestConfig object
    allowEntitlementRequestboolean

    If this is true, entitlement requests are allowed.

    Default value: false
    Example: true
    requestCommentsRequiredboolean

    If this is true, comments are required to submit entitlement requests.

    Default value: false
    Example: false
    deniedCommentsRequiredboolean

    If this is true, comments are required to reject entitlement requests.

    Default value: false
    Example: false
    grantRequestApprovalSchemesstringnullable

    Approval schemes for granting entitlement request. This can be empty if no approval is needed. Multiple schemes must be comma-separated. The valid schemes are "entitlementOwner", "sourceOwner", "manager" and "workgroup:{id}". You can use multiple governance groups (workgroups).

    Default value: sourceOwner
    Example: entitlementOwner, sourceOwner, manager, workgroup:2c918084660f45d6016617daa9210584

Authorization: oauth2

type: Personal Access Token
scopes: idn:access-request-config:read

Request Collapse all
Base URL
https://sailpoint.api.identitynow.com/beta
Auth
ResponseClear

Click the Send API Request button above and see the response here!