What Serval Manages
Serval owns the access request workflow: who can request what, under which rules, how it’s provisioned, and when it’s automatically revoked. Serval provides:- Fine-grained access policies with time limits, approvals, and justification requirements that can be saved and reused across applications
- Flexible provisioning via adding users to IdP groups, direct API, or custom AI-generated workflows
- Real-time audit trails with attestation reminders, one-click revocation, and exportable logs for compliance
- IdP integration to import existing roles, groups, and policies in minutes
The Complete Just-in-Time Access Lifecycle
Serval manages access from request through automatic removal:- Request - User asks for access through the configured help desk (e.g., Slack, Teams, or app.serval.com)
- Eligibility check - Access profiles determine if they can request this role
- Approval - Access policies route the request to appropriate approvers (approvers can modify the requested duration)
- Provisioning - Access is granted via your chosen method (linked group, direct API, custom workflows, or manual task)
- Active access - User has access for the configured duration and can request extensions or reductions
- Automatic revocation - When time expires, Serval removes access using the same provisioning method
- Logs - Entire lifecycle is logged and accessible via Serval
How Access Management Works
For Administrators
Connect your applications and configure role-based access control for any application role or resource role. Access Profiles control which users can request access to specific applications, resources, or roles. Profiles determine eligibility before a request enters the approval workflow. Access Policies define the rules for each role, including time-bound access limits, approval requirements, and business justification requirements. Provisioning Methods determine how Serval grants access. Options include adding users to identity provider groups, direct API provisioning to applications, custom workflows, or manual provisioning tasks. Governance and Auditing allows you to view who has access to what, why they have it, and for how long—all in one place. Export logs and generate customizable reports for audit readiness. Serval provides attestation reminders and one-click revocation to maintain least-privilege controls at scale.For End Users
Most users don’t know exactly which role they need. They know they need “Figma access” but not whether that’s Editor, Admin, or Viewer access. Serval’s conversational interface guides them to the right access level. Request access through two interfaces: Conversational Interface: Request access through Slack or Microsoft Teams. Serval helps determine which application and access level you need, routes approvals, provisions access, and automatically revokes access when the time limit expires. You can also extend, shorten, or cancel access through the same conversation.
Catalog: Browse all requestable items from a single catalog in app.serval.com. Click New Request and select Browse Catalog to see two sections:
- Access — Request role-based access to applications. The catalog surfaces details including descriptions and approval methods, so you can find the right access without guessing. Serval automates eligibility checks, approval routing, and provisioning.
- All Services — Browse catalog items derived from workflows with form inputs. Select an item to create a ticket with the relevant form, making it easy to submit structured requests like new laptop orders, software installations, or onboarding tasks.
Extend access from any ticket: Users can request additional time for expiring access from any ticket — not just the original request. Open a new ticket or revisit the original to extend access before it expires.
Next Steps
Get Started
Admin Quickstart Guide
Access Concepts
Overview of access concepts
Request Access
End User Request Guide