DocumentationAPI ReferenceRelease Notes
Log In
Documentation

Admin access requests

Suggest Edits

Approve or deny JIT Admin access requests on the JIT Access Management page.

Managing JIT Admin access requests requires special permissions. Assign the following permissions when creating the user account or assign the Admin role:

  • AdminAccessRequestApprover
  • AdminAccessRequestViewer

ℹ️

Note

For more information about JIT admin access, see JIT Admin access settings.

Use the Admin Access Requests page to view user requests.

  1. Sidebar: Easy access to all pages in Endpoint Privilege Management, including the Home, Policies, Computers, Computer Groups, Management Rules, Analytics, JIT Access Management,Configurations, Auditing, and User Management pages.

  2. Header: Enter keywords to run a global search across computer groups, policies, computers, and users, view your notifications, access your connected apps, and set your account preferences.

  3. Filters: Click the drop arrow to select a filter type. The selected filter displays to the left of the drop-down.

    • Clear Filters: Click to remove all filters and search results

    • Decision filters
      • Approved: Filter by requests approved.
      • Denied: Filter by requests denied.
      • Pending: Filter by requests in a pending state.

  4. List options: Click to refresh the list, Download icon in [%=Products.PMAb%] SaaS. to download the list to a .csv file, and to select which columns to display on the page.

  5. Ticket list columns: Not all columns display in the image above.

  • Column names
    • Ticket Number: The ticket number.
    • Decision: The decision on the request, approved or denied.
    • Ticket Type: EPM or ServiceNow.
    • Time requested:The length of time for the access.
    • Reason:The reason provided by the user.
    • Computer Name: The computer where the request was initiated.
    • Group Name:The computer group name.
    • User: The user requesting access.
    • Decision Performed By: The user who managed the request.
    • Requested on: The date the user submitted the request.
    • Decision Time: The date and time the decision was made.
    • Decision Duration: The length of time access is permitted.

Access admin requests

To access JIT Admin access:

  1. Select Just-in-Time (JIT) Access Management from the main menu.
  2. Select the Admin Access Requests tab.
  3. Review the requests.
  4. Select the menu for a request to access the approve and deny options.

Set a request already approved to deny if the session is no longer required or approved in error.

Manage requests on the endpoint app

On the endpoint app:

  • Users can request a session duration between 5 minutes and 24 hours. The approver sets the session duration during the approval process.
  • Users can have only one request open at a time.
  • Notifications are issued when 5 minutes and 1 minute remain in the session. The user is logged off the session when the time expires.
  • Users can select End Session to close the session before the allocated session time passes.

Updated 18 days ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.