Configure a Workflow Policy

Document created by RSA Information Design and Development on Jun 13, 2017Last modified by RSA Information Design and Development on Jun 13, 2017
Version 2Show Document
  • View in full screen mode

When you install Authentication Manager with the provisioning feature of Self-Service, an initial workflow policy is automatically created. You can add more workflow policies, for example, if you want a workflow policy for hardware token distribution and another policy for on-demand tokencode service enablement.

Note:  Do not use the characters (<) and (>) in e-mail templates.

Procedure 

  1. In the Security Console, click Setup > Self-Service Settings.

  2. Under Provisioning, click Workflow Policies.

  3. On the Workflow Policies page, click Add New.

  4. On the Add Workflow Policy page, do the following:

    1. In the Workflow Policy Name field, enter a unique name that does not exceed 128 characters.

    2. (Optional) To make this policy the default policy for all new security domains created in this deployment, select Set as the default workflow policy.

    3. Under E-mail Notification Settings, select one or more of the following options:

      • Enable e-mail notifications for all workflow participants - All workflow participants (managers, or administrators with permission to approve requests or distribute tokens).

      • Enable e-mail notifications for Super Admin - All Super Admins.

      • Enable e-mail notifications for parent workflow participants - All approvers and distributors in the parent security domain of the user that made the request.

  5. (Optional) Under E-mail Notification Templates, customize the e-mails sent to Self-Service users when a request is submitted, waiting for approval, cancelled or rejected.

  6. Do one of the following:

    • To continue configuring this policy, click Save & Next.

      The User & User Group page displays.

    • To exit, click Save & Finish.

  7. On the User & Group page, do the following:

    1. Under Workflow Definitions, specify the number of steps required for each request type.

    2. (Optional) Under E-mail Notification Templates, customize the e-mail notifications that Self-Service sends to users about approvals.

  8. Do one of the following:

    • To continue configuring this policy, click Save & Next.

      The Hardware Token page displays.

    • To exit, click Save & Finish.

  9. On the Hardware Token page, do the following:

    1. Under Workflow Definitions, specify the number of steps required for each request type.

      Note:  If ODA is configured as the identity confirmation method for risk-based authentication (RBA), RSA recommends that you set the approval level of the workflow definition to 0 for ODA. If this value is not 0 for ODA, users must request ODA and wait for approval before they can log on when RBA is enabled.

    2. (Optional) Under E-mail Notification Templates, customize the e-mail notifications that Self-Service sends to users about an approved hardware token and lost SID800 token.

  10. Do one of the following:

    • To continue configuring this policy, click Save & Next.

      The Software Token page displays.

    • To exit, click Save & Finish.

  11. On the Software Token page, do the following:

    1. Under Workflow Definitions, specify the number of steps required for each request type.

    2. (Optional) Under E-mail Notification Templates, customize the e-mail notifications that Self-Service sends to users about an approved software token.

  12. Do one of the following:

    • To continue configuring this policy, click Save & Next.

      The On-Demand Token page displays.

    • To exit, click Save & Finish.

  13. On the On-Demand Authentication page, do the following:

    1. Under Workflow Definitions, specify the number of steps required for On-Demand Authentication Enablement.

    2. (Optional) Under E-mail Notification Templates, customize the e-mail notifications that Self-Service sends to users about an approved request for On-Demand Authentication.

  14. Click Save.

    The Workflow Policies page displays.

 

 

 

 


Attachments

    Outcomes