Skip to content

Configuration

You can configure and manage the Access Request feature from the Configuration page. This page is available only to Hire2Retire Admins and Editors.

From this page, you can enable or disable access requests, link an Identity Provider (IdP), define reviewers, and control which entitlements are available for users to request.

Once requests are approved, access requests are fulfilled automatically by Hire2Retire.

Linking an Identity Platform

Before configuring access requests, you must link an Identity Platform.

Select Identity Platform

You will see a list of all configured IdP connections for your organization. You can select one IdP connection, which will be used to:

  • Fetch groups available for requesting
  • Identify group owners
  • Resolve reviewers and user details

When no IdP is selected: - You will see the label Link Identity Platform

No IdP

You can select the connection of your choice across your organization.

The selected IdP is used across the Entitlement Request feature for catalog generation, approvals, and fulfillment.

RoboMQ follows strict security and privacy standards. See our Security and Privacy Policies to learn more about how RoboMQ handles your account access.

Access Request Configuration

After linking an Identity Platform, you can configure the following settings.

Configure Reviewers

Configuration Page You can define who is responsible for reviewing access requests.

Available reviewer options (single selection):

  • Group Owners – Owner(s) of the requested group as defined in the IdP
  • Recipient's Manager – Manager of the recipient if available
  • Individuals – One or more specific users selected by you

The selected reviewer strategy is applied to all access requests.

Group availability in access requests

Group Availability

You can control which groups are visible and available for requesting.

You can choose one of the following options:

  • Exclude Selected Groups: Selected groups are hidden from the access catalog

  • Only Selected Groups: Only selected groups are available for requesting

This allows you to restrict access requests to approved or commonly used entitlements.

Enable or Disable Access Requests

You can enable or disable the Access Request feature for your organization.

If you disable the Access Request feature, you won’t be able to create new requests. Reviewers will not be able to approve or reject requests but can still view all existing requests.

Workflow Compatibility Check

When enabling or updating the Access Request configuration, Hire2Retire validates existing workflows for compatibility with approved access retention.

If one or more workflows are not compatible, you will see a warning message listing the affected workflows for that domain. You must redeploy these workflows to ensure approved access is retained correctly.

Workflow Compatibility Warning