This article describes the approval handling for certificates in the Workplace package in Smart ID Identity Manager. The approval step is used in different use cases for Smart ID Identity Manager, such as Enroll profile, and Lock certificate. For more information, see Smart ID Workplace use cases.
...
To approve or reject a request, you must have theWorkplace certificate agent rolein Identity Manager Operator.
Create approval request
...
Create approval request for enrollment (P10, P12, ACME, SCEP)
Depending on the approval settings of the certificate profile, either an approval for enrollment is required or not.
Use case details
| Expand |
|---|
| title | Overview and technical details |
|---|
|
title
| Sub process description | A Workplace certificate agent wants to have a general sub-process for approval scenarios to create the initial request with all relevant information depending on locking a certificate or enrolling a certificate profile. |
|---|
| Outcome | The request for approval has been created and needs to be approved by using another process. |
|---|
Symbolic name | AssetsProcApprovalRequest |
|---|
| Process name | |
|---|
| Component | Identity Manager Operator |
|---|
| Process start | Sub-process being called |
|---|
|
| Expand |
|---|
|
Create approval request for revocation/locking
Depending on the approval settings of the certificate profile, either an approval for locking/revocation is required or not.
Use case details
| Expand |
|---|
| title | Overview and technical details |
|---|
|
| Sub process description | A Workplace certificate agent wants to have a general sub-process for approval scenarios to create the initial request with all relevant information depending on locking a certificate or enrolling a certificate profile. |
|---|
| Outcome | The request for approval has been created and needs to be approved by using another process. |
|---|
Symbolic name | AssetsProcApprovalRequest |
|---|
| Process name | |
|---|
| Component | Identity Manager Operator |
|---|
| Process start | Sub-process being called |
|---|
|
Approval handling
| Expand |
|---|
| title | Approval handling process |
|---|
|
When an approval is needed, an information text is displayed in Identity Manager Operator and you will receive an email with information that there is an approval request sent. - Log in to Identity Manager Operator with your admin account.
- Go to the Search page.
- Select Workplace request, click Search and navigate to the request.
- Select Approve request(on requests with the state "Requested").
- Select one of the following:
- Approve: The requester receives an email notification that the request is approved.
- Reject: Add information in the Reason for rejection text field. The requester receives an email notification that the request is rejected.
- On hold: The request remains in the same state and you can approve/reject it later.
| Note |
|---|
Depending on the type of approval request there may be additional steps needed, for example for P10 and P12 certificate requests. |
|
...
| Expand |
|---|
|
- Log in to Identity Manager Operator with your admin account.
- Go to the Search page.
- Select Workplace requests and navigate to the request.
- Select Delete request.
|
...
