7.2.2 Bookable Access Profiles

Within Thinfinity Workspace, RPAM is based on a set of permissions that can be grouped to define roles according to each organization's needs. For example, the Requester role represents the user requesting access to a resource, while the Approver role corresponds to the person responsible for approving or rejecting the request. Roles are defined system-wide but a user or group can assume different roles for different profiles: for example, a user can have an Approver role for an access profile and a Requester role for another, enabling fine-grained and precise control over access to critical resources.

Access Profiles become bookable when any of their defined users has been granted to a specific RPAM related role.

Once an Access Profile is configured as bookable, users have the possibility of creating access requests. They can do that either from the access profile pop-menu or from the Resource Reservation page. According to the permissions set for a specific role, a user might request access for themselves and/or for other users. Approvers can then grant or deny access to a specific resource.

Roles are defined globally for all Access Profiles in the system but a user can have different roles for different profiles: for example, a user can have an Approver role for an access profile and a Requester role for another.

To grant a user a specific role for a profile, you need to access the Permissions tab of the Settings menu, add the user to the list of users who can access that profile and then assign them one of the available roles.

Resource Reservation Settings for an Access Profile

Some Resource Reservation settings can also be configured specifically for each access profile from the Settings menu under the Resource Reservation tab where you can define:

• Maximum Bookings: The highest number of concurrent or total bookings allowed for that specific profile.

• Buffer Time: The minimum gap allowed between two subsequent bookings.