Dependent access overview
Dependent accesses are provisioned to a user upon approval of the access request. The dependent accesses are evaluated based on the provisioning policy that is configured with the service access.
The following cases explain what can be considered as dependent
accesses.
- Provisioning policy membership
- The provisioning policy membership is one of the criteria that
governs the calculation of the dependent accesses. For a provisioning
policy with a membership type as role and the provisioning option
as automatic, the entitlements that are added are considered as dependent
accesses. The following target type options are available for a provisioning
policy:
- Specific service
- Service type
- Service selection policy
- Group-based access requests
- When a group membership is requested and if there is no account for a user on the service, a new account is created. This new account is considered as dependent access.