Skip to main content Link Menu Expand (external link) Document Search Copy Copied

Policy configuration

Before users can request temporary elevated access in TEAM, a user with the admin persona needs to set up the application. This includes defining eligibility and approval policies. A user takes on the admin persona if they are a member of the TEAM admin Identity Center group specified during TEAM deployment.

Refer to the policy overview section for more information on TEAM policies

Eligibility policy configuration

Eligibility policies determine who can request temporary elevated access with a given scope. You typically define eligibility policies to allow specific people in specific teams to request temporary elevated access that you anticipate they will need to perform operational tasks as part of their job function.

Configuring eligibility policy

Approver policy configuration

Approver policies work in a similar way to eligibility policies, except they authorize users to approve temporary elevated access requests, rather than create them.

Configuring approval policy

Now that the admin persona has defined eligibility and approval policies, TEAM is ready for use.

🚀 Next Steps: Configure notifications.