Access Scopes
Create and use access scopes
An access scope is a saved, self-updating group of resources created from a filtered Inventory view. After Apono’s hourly integration syncs, each access scope automatically incorporates newly discovered resources that match its defined criteria.
An access scope offers the following benefits:
Creates reusable groupings for access flows
Supports ongoing resource oversight and analysis
For example, you can create an access scope such as Production Read Access to identify all resources with read permissions in production. Then, you can build an access flow with the Production Read Access scope. As new resources are added through your Apono integrations, they automatically become part of the saved scope, ensuring that future access requests include all applicable resources.
Create an access scope
You can create an access scope whenever you want to save a filtered set of resources for reuse in access flows.

Follow these steps to create an access scope:
Click Save Access Scope. The Access Scopes page opens, and the Save Access Scope pop-up window appears.
Enter an Access Scope Name.
Click Save Access Scope. The access scope is saved and appears as the selected access scope on the Access Scopes page.
You can now use the access scope to build an access flow or periodically view the list of resources that meet the access scope's criteria.
Ensure that the access scope criteria are narrowly defined. Access scopes automatically adjust as new resources matching your criteria are identified across integrations. Broad or overly permissive criteria may inadvertently grant unauthorized user access.
Use an access scope
After creating an access scope, you can use the access scope in an access flow.

Use in a new access flow
Follow these steps to apply the access scope to a new access flow:
On the Access Scopes page, under Access Scope, click the access scope name. NOTE: If your list of access scopes is long, you can enter the name of the access scope in the search field to filter the list.
Click Use in Access Flow. The Use Access Scope in Access Flow panel appears.
Click Use in New Access Flow.
Create an access flow.
Use in an existing access flow
Follow these steps to apply the access scope to an existing access flow:
On the Access Scopes page, under Access Scope, click the access scope name. NOTE: If your list of access scopes is long, you can enter the name of the access scope in the search field to filter the list.
Click Use in Access Flow. The Use Access Scope in Access Flow panel appears.
Beside an existing access flow, click Use. The access scope is added as a set of resources within the access flow.
View an existing access scope

Follow these steps to select an access scope:
On the Inventory page, click the Saved Access Scope dropdown menu.
(Optional) Enter the name of the access scope in the search field.
Select the access scope. The list of resources will be filtered by the criteria of the access scope.
Delete an access scope

Follow these steps to delete an access scope:
On the Inventory page, click the Saved Access Scope dropdown menu.
Click
(trash icon) next to the access scope to delete. A confirmation window appears.
Click Yes.
Last updated
Was this helpful?