I'll be very embarrassed (probably a given) if this is a custom configuration issue, but I'm stumped...
Here is the scenario:
User A reports to Supervisor 1
User B reports to Supervisor 2
If I request an Entitlement or Application Role for User A and User B, Supervisor 1 must approve User A's request, and Supervisor 2 must approve User B's request - this is exactly what is expected and needed.
However, if I request a Group for User A and User B, Supervisor 1 must approve for both. This is a compliance issue for us.
Help! Thanks in advance.
Few questions to better understand your use case
Is the following scenario can happen in your environment?
One request which contains:
If the answer is yes, can you describe how the approvals should be grouped?
I understand your example, however what is the real logic for Group approvals?
A group "Owner" needs to approve if access is requested to his group?