Get Started: Access Reviewers

A step-by-step guide to completing your review assignments with Veza.

PreviousAccess Reviews NextGet Started: Review Operators

Last updated 10 months ago

Was this helpful?

Get Started: Access Reviewers

A step-by-step guide to completing your review assignments with Veza.

You may have just received an email inviting you to participate in an access review using Veza. If so, welcome! Being assigned as a reviewer means that your expertise is needed to confirm that an identity (such as a user or service account) in your organization has the correct access to a particular application or resource.

How did you become a reviewer?

A compliance officer or another individual at your company has assigned you as a default reviewer, such as for an audit of all employees you manage, or applications or resources that you own.
Another assigned reviewer has requested your help to review, since you might have unique context into the identities and systems under review.
Veza has identified you as the manager of an employee or owner of an application or resource, and auto-assigned you as a reviewer.

This guide provides some quick instructions to get started with:

Accessing the Veza platform

Browse to your organization's Veza login page:
Follow the link in your notification email or use your identity provider's app portal to open Veza in your browser.
Click Login with SSO to sign in with your Identity Provider:

Viewing and continuing your reviews

After you log in, you will see the Veza Access Reviews page. Here, you can see all your assigned reviews and open the one you want to work on.

Pick a review from the list to open it:

Find the review to continue on the Access Reviews page.
You could be assigned to reviews that are part of a recurring certification campaign, or a one-off review. If you have a few access reviews to work on, you can organize them by name, configuration, or due date.
Click Open to go to the review interface.

Reviewing access

The review interface is a spreadsheet-like view for reviewing an access relationship between two entities.

You can show or hide Columns, and rearrange and resize them to customize the view. Use the column selector to show or hide notes, internal names, and status details as needed.

Use this page to approve or reject your assigned rows, sign off on the decision, and finish the review. You can close the window to resume later - progress is always saved.

Each row represents a connection from the leftmost entity (typically an identity) to the rightmost entity (usually an app or data resource). An access review could also just involve entities of a single type (such as users, groups, or roles).

To approve or reject a single row, click the Reject (❌) or Approve (✔️) button on the right. Depending on how your administrator has configured Veza, you might need to add a note explaining some decisions.

To see prior actions or undo a decision that you've made:

Expand the row Actions dropdown and pick an option:
- View Action Log: View past decisions, notes, and other activity for the row.
- Clear Decision: Clear the current "Approved" or "Rejected" decision.

Signing off on decisions

After your decisions are final, you can finish the review by signing off on your choices. Signing off on a row prevents further changes:

To sign off on rows:

Click Approve (✔️) or Reject (❌) to apply one or more decisions.
Click Sign Off at the top right.
In the confirmation window, review the decisions and click Confirm.

By default, signed-off rows are hidden. You can toggle the visibility of these rows with the filter dropdown menu.

Bulk actions

To act on groups of rows, mark the checkbox for one or more rows, and pick an action to apply:

Approve or Reject the rows.
Reassign reviewers: Reassign the row to another user by email to perform the review.
Add a note: Add a brief message explaining the decision, or details about how to remove the access.

Row details sidebar

Click the icon to the left of each row to open the details sidebar. Working from this view can be useful for quickly switching rows to inspect their full attributes, and signing off on individual decisions.

Change rows with your keyboard arrow keys, and click to approve, reject, or sign off on the current selection:

Filter by user

It can be useful to focus on one identity at a time when working on a large review. To quickly filter on a single user in the table:

Click Show Users.
Find a user name on the list.
Click View Details to only show rows that involve that user.

Filters

If you have any results to review, you can filter the view and use a bulk action to update all rows that meet a given criteria.

Filters can apply to source or destination entity attributes, or row metadata such as current decision or assigned reviewers.

To apply a filter:

Click Filters at the top of the review interface.
Find an attribute to filter on and click on it.
For example, you can filter to find users whose Name starts with "A", any rows that have a "Rejected" decision, or show only users whose "Is Active" status is "True."
Pick an Operator, such as "Equals" or "Contains" to set the filter behavior.
Type in a Parameter: Enter the text to match. Click Apply to filter the reviewer interfaces based on your selection.

For more information, see Filters and Bulk Actions.

Reassigning reviewers

If you do not have the information or authority required to make a decision, assign another reviewer. If you're not sure, assign the review's creator. Otherwise, you can pick another employee at your organization.

To change the reviewer for a row:

Expand the row Actions menu and click Reassign Reviewers.
Pick from the list or enter the email of another reviewer.
Click Save to reassign reviewers and send a notification email.

For more information, see Assign Reviewers

PreviousAccess Reviews NextGet Started: Review Operators

Last updated 10 months ago

Was this helpful?