The requests need to be approved in the following scenarios:

• Access requests require approval by the responsible attorney or the Administrator (Security Policy: Restricted)

• Access requests require approval by an administrator (Security Policy: Restricted)
• Access requests require approval by any member of the matter team or the administrator (Security Policy: Restricted)

You can approve/reject access requests in two ways:

Option 1: From the Email Notification

When a user requests for access to a matter or a case, you (approver) receive an email notification. Based on the notification mode set by your system administrator, you receive one of the three predefined email notifications. Based on the email notification received, you can act upon the access request from the email in one of the following ways:

• You access the email through a web client or mobile client, and you are required to securely access the iManage Security Policy Manager application to take action on the request. The link in the email guides you to the Manage Access Requests page in iManage Security Policy Manager. For more information on how to act upon the request from the Manage Access Requests page, see Option 2: From the iManage Security Policy Manager User Console. 
• You access the email through a web client or mobile client, which contains tokenized links (Approve as Team Member, Approve as Basic Team Member, Deny Access Request). Clicking on any link sends your response directly to iManage Security Policy Manager. The user gets unlimited period access, if approved. To update user type and access period, click Open Security Policy Manager to set the User Type and Access Period link in the notification.
• You access the email through an email client, which contains tokenized links (Approve as Team Member, Approve as Basic Team Member, Deny Access Request). This configuration mode enables you to respond to the request offline. Clicking on any link creates a response email and the response is sent to iManage Security Policy Manager when internet becomes accessible. The user gets unlimited period access, if approved. To update user type and access period, click Open Security Policy Manager to set the User Type and Access Period link in the notification. 

Option 2: From the iManage Security Policy Manager User Console

1. After you are logged in to the iManage Security Policy Manager application, click the Access Requests tab > Manage Access Requests tab. 

   The Manage Access Requests page, with the list of pending for approval requests, appears.

   NOTE:

   For all the matters that are restricted by client, the system displays the client details.

   For all the matters, where the parent client is part of a client group, the system displays the client group details.

   You can customize the columns to be displayed on the page. Click at the top right of the pane, and then click the table columns to be displayed. The available options are: User, ID / Name, Job Title, Practice Area, Request Date, Reason. Any columns which are already selected for display are shown in bold, with a checkmark beside them.

   You can sort the rows displayed by clicking the column heading (e.g. Reason), which will display a small arrowhead to the right of the column heading. Click this arrowhead to sort the column by the values under that heading.

   If an access request has been made on behalf of a user or group, by another user, a note "Access request submitted by <user>"  appears below the reason (if that column is displayed).

   Click Update to refresh the list of displayed access requests.

2. In the required request row, do one of the following:
   
   • Click on the request row or select the check box next to a user.
     
     • Click Quick Approve to add the user directly as a team member for unlimited access period.
     • Click Approve. The Approve dialog box appears.
       • In the User Type field, click one of the option to add the user as a Team Member or a Basic Team Member.
       • In the Set Access Period field, click one of the option to provide access for unlimited period or a defined period. 
         • If you chose 'Access Period is Time Limited', 
           1. From the date picker, select the date and time up to which you want to provide access to the user. If you do not specify a time, then the system will default the time to midnight in the time zone of the server.
           2. Click Submit. The access duration is set for the user.
     • Click Deny to reject the request for access from the user.
     Alternatively, 
   • Click  in the request row, then
     • Click View Reason to see the reason entered by the requestor for placing the access request. 
     • Click Quick Approve to add the user directly as a team member for unlimited access period.
     • Click Approve. The Approve dialog box appears.
       • In the User Type field, click one of the option to add the user as a Team Member or a Basic Team Member.
       • In the Set Access Period field, click one of the option to provide access for unlimited period or a defined period. 
         • If you chose 'Access Period is Time Limited', 
           1. From the date picker, select the date and time up to which you want to provide access to the user. If you do not specify a time, then the system will default the time to midnight in the time zone of the server.
           2. Click Submit. The access duration is set for the user.
     • Click Deny to reject the request for access from the user.
     or
   • If you want to directly add the user to the client/matter team, hover the cursor over a request row, and then click the Quick Approve button which displays upon hover. This adds the user as a Team Member with access for unlimited period.