Summary comment by the operator creating the access request.
List of operator actions for which approval is sought by the operator user.
The last recent Comment entered by the approver of the request.
Contains the user ids who have approved the accessRequest for extension.
Specifies the type of auditing to be enabled. There are two levels of auditing: command-level and keystroke-level. By default, auditing is enabled at the command level i.e., each command issued by the operator is audited. When keystroke-level is chosen, in addition to command level logging, key strokes are also logged.
The comment entered by the operator while closing the request.
The OCID of the compartment that contains the access request.
Defined tags for this resource. Each key is predefined and scoped to a namespace.
Duration in hours for which access is sought on the target resource. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
Duration in hours for which extension access is sought on the target resource. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
Contains the user ids who have approved the accessRequest for extension.
Simple key-value pair that is applied without any predefined name, type or scope. Exists for cross-compatibility only.
The OCID of the access request.
Whether the access request was automatically approved.
Whether the access request was requested for Validate Assignment.
more in detail about the lifeCycleState.
The current state of the AccessRequest.
Number of approvers who have authorized an access request. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
Number of approvers required to approve an access request. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
Number of approvers who have authorized an access request for extension. Note: Numbers greater than Number.MAX_SAFE_INTEGER will result in rounding issues.
Additional message specific to the access request that can be specified by the approver at the time of approval.
The OCID of the operator control governing the target resource.
Name of the Operator control governing the target resource.
A unique identifier associated with the operator who raised the request. This identifier can not be used directly to identify the operator. You need to provide this identifier if you would like Oracle to provide additional information about the operator action within Oracle tenancy.
Summary reason for which the operator is requesting access on the target resource.
This is an automatic identifier generated by the system which is easier for human comprehension.
The OCID of the target resource associated with the access request. The operator raises an access request to get approval to access the target resource.
The name of the target resource.
resourceType for which the AccessRequest is applicable
Priority assigned to the access request by the operator
The subresources requested for approval.
System message that will be displayed to the operator at login to the target resource.
Time when the access request was created in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z'
Time when the access request was last modified in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z'
The time when access request is scheduled to be approved in RFC 3339 timestamp format.Example: '2020-05-22T21:10:29.600Z'
Time in future when the user for the access request needs to be created in RFC 3339timestamp format. Example: '2020-05-22T21:10:29.600Z'
The OCID of the user that last modified the access request.
The OCID of the workflow associated with the access request. This is needed if you want to contact Oracle Support for a stuck access request or for an access request that encounters an internal error.
An Oracle operator raises access request when they need access to any infrastructure resource governed by Operator Access Control. The access request identifies the target resource and the set of operator actions. Access request handling depends upon the Operator Control that governs the target resource, and the set of operator actions listed for approval in the access request. If all of the operator actions listed in the access request are in the pre-approved list in the Operator Control that governs the target resource, then the access request is automatically approved. If not, then the access request requires explicit approval from the approver group specified by the Operator Control governing the target resource.
You can approve or reject an access request. You can also revoke the approval of an already approved access request. While creating an access request, the operator specifies the duration of access. You have the option to approve the entire duration or reduce or even increase the time duration. An operator can also request for an extension. The approval for such an extension is processed the same way the original access request was processed.