Messaging and Webhooks

Follow this process to configure an elevation policy for an approval request message action.

Prerequisites

• Ensure that your Privilege Manager instance is installed correctly and is operational.

• You must have Privilege Manager administrative access to configure API users, credentials, and you are able to integrate the system with webhooks.

• Privilege Manager Server version 12.0.5 or higher is required.

Configuration

1. Set up a user credential.

   1. Select Admin | Configuration, then select the Credentials tab.

   2. At the New User Credential page, select Create.

   3. Provide a Name and Description.

   4. At the Type pull-down, specify User Credential Secret Resource (Resources).

   5. Provide an Account Name and Password.

   6. Click Save Changes.
      

      

2. Set up a webhook event.

   1. Select Admin | Configuration, then select the Messaging tab.

   2. At the Messaging page, select Create.

   3. Provide a Name and verify that the desired credential is selected.

   4. Provide the Request URL for the endpoint that will receive the messages from Privilege Manager. This may be an invoke URL or something else, depending on the system you are integrating with. Click Create.
      

   

   5. On the New Webhook page, provide a description for the webhook. Set the Webhook Event drop-down to the generic System Approval Request Event and ensure that the webhook is Enabled.

      For ServiceNow instruction, refer to the instructions in the Integrations documentation.

3. Create an approval process.

   1. Select Admin | Tasks. Select the Automation tab and navigate to Automation | Approvals | Approval Processes. Click Create.

   2. Select the Manual Approval Process Template and provide a Name and Description for the approval type. Click Create.

      

4. Create an approval type that will be used in the message for your policy.

   1. Select Admin | Tasks. Select the Automation tab and navigate to Automation | Approvals | Approval Types. Click Create.

   2. Provide a Name and Description for the Approval type.

   3. At the Request Type page, set File Specific to Yes.

   

   4. At the Process Handler drop-down, select the previously created approval process.

   5. Click Save Changes.
      

5. Navigate to Admin | Actions and select the Application Approval Request Message Action (HTML).

   1. On that page, click Duplicate and provide a new name for the action. Click Create.
      On the Settings section of the new Application Message Action page, specify the Message Type as Approval Request Message and select the Approval Type you previously created.

   

6. Locate the existing elevation policy.

   1. In the Actions section, select the previously created Application Approval Request Message Action (HTML).

   2. Click Save.

   3. Set the policy toggle to Active to enable the policy.