Skip to main content
Version: Axidian Privilege 3.0

Action Requests

The section is designed to work with requests for actions. This mechanism allows you to configure additional confirmation by a second person (Axidian Privilege Administrator) to connect to the target resource.

caution

The SESSION REQUESTS MANAGEMENT and CREDENTIALS VIEWING REQUESTS MANAGEMENT (SessionRequest.Confirm, CredentialsViewingRequest.Confirm) claims are required.

tip

The session request timeout is configured in the Sessions policy section. The Password and SSH key viewing request timeout is configured in the Account policy section.

Action requests always display the historical values of the User, Resource and Account at the time of the request creation. Historical names in Requests and Sessions may be different because when opening a session, the current value of the User, Resource, Account is saved.

Search Action Requests

note

Searching for Action requests by User finds Requests from users that request action.

There is no search by the Administrator who confirms the Action requests.

Enter the UserAccount or Resource in whole or in part in the search bar.

Click Extended search and enter one or more criteria, Request numbercreation time intervalAccountResourceResource group, Organizational unit, User.

Select request state:

  • Pending 
  • Confirmed
  • Rejected
  • Expired
  • Canceled by user
  • Used
  • Not used

Select request type:

  • Session
  • Credentials

Action Request Functions

Action Request Confirmation

This feature allows the Axidian Privilege Administrator to confirm the User's request.

  • Click Confirm in the request page, or by selecting the pending request's check box.

Action Request Rejection

This feature allows the Axidian Privilege Administrator to reject a User's request.

  • Click Reject in the request page, or by selecting the pending requests check box.

Request Page

The request page displays the following data:

  • User — the user of the Active Directory who created the request to open a session.
  • Account — an account that is used to open an RDP, SSH or web session on the resources specified in the permission.
  • Resource — resources on which RDP, SSH or a web session can be opened on behalf of the account specified in the permission.
  • User's IP — The IP address from which the user was connecting to PAM Gateway, SSH proxy or RDP Proxy.
  • Connection type
  • Reason is arbitrary text entered by the user when creating a request.
  • State — the current status of the request (Pending, Confirmed, Rejected, Expired, Canceled by user, Used, Not used).
  • Creation time — date and time when the request was created by the user.