Workflows

Workflows in ALM define the approval processes for Service Accounts. Once a Template is completed and published, Requestors can use ALM to request that a Service Account be created.

Overview

ALM supplies a straightforward, Roles-driven workflow system to support your oversight of new AD account creation, review, and eventual renewal or retirement.

ALM represents your approval processes as Workflow Templates. Each template defines the approval process for a particular service account kind or category as defined by your organization.

ALM’s workflow system follows a simple, linear process from template definition through account Requests and Approvals.

Workflow Process

Workflow Template Fields

The fields that define a Workflow Template are defined by the Workflow Template Wizard. The wizard is accessed when a Workflow Template is created and edited.

Workflow Template fields include:

  • Template Details - basic descriptors that include: ame, version, status, and EOL action.
  • Secrets Vault - determines how Secrets are stored and managed by the workflow.
  • Directory Services - describes the platform that manages and provisions the accounts.
  • Ownership - restricts the ownership of the managed accounts.
  • Account Lifecycle - determines how ALM actions the End of Lifecycle (EOL).
  • Workflow Groups - the groups allowed to request managed accounts using the Workflow Template.
  • Approval Flow - the steps that define the approvals required for account provisioning.