Skip to main content
Serval automates just-in-time (JIT) role-based access provisioning and deprovisioning directly from help desk requests. Serval manages the complete access request lifecycle - request, approval, provisioning, audit, and revocation - while integrating with your existing identity provider and applications.

What Serval Manages

Serval owns the access request workflow: who can request what, under which rules, how it’s provisioned, and when it’s automatically revoked. Serval provides:
  • Fine-grained access policies with time limits, approvals, and justification requirements that can be saved and reused across applications
  • Flexible provisioning via adding useres to IdP groups, direct API, or custom AI-generated workflows
  • Real-time audit trails with attestation reminders, one-click revocation, and exportable logs for compliance
  • IdP integration to import existing roles, groups, and policies in minutes
Serval integrates with your existing HRIS, identity provider, and identity governance systems to operationalize least-privilege role based access control on top of your existing infrastructure.

The Complete Just-in-Time Access Lifecycle

Serval manages access from request through automatic removal:
  1. Request - User asks for access through the configured help desk (e.g., Slack, Teams, or app.serval.com)
  2. Eligibility check - Access profiles determine if they can request this role
  3. Approval - Access policies route the request to appropriate approvers
  4. Provisioning - Access is granted via your chosen method (linked group, direct API, custom workflows, or manual task)
  5. Active access - User has the access for the configured duration
  6. Automatic revocation - When time expires, Serval removes access using the same provisioning method
  7. Logs - Entire lifecycle is logged and accessible via Serval

How Access Management Works

For Administrators

Connect your applications and configure role-based access control for any application role or resource role. Access Profiles control which users can request access to specific applications, resources, or roles. Profiles determine eligibility before a request enters the approval workflow. Access Policies define the rules for each role, including time-bound access limits, approval requirements, and business justification requirements. Provisioning Methods determine how Serval grants access. Options include adding users to identity provider groups, direct API provisioning to applications, custom workflows, or manual provisioning tasks. Governance and Auditing allows you to view who has access to what, why they have it, and for how long—all in one place. Export logs and generate customizable reports for audit readiness. Serval provides attestation reminders and one-click revocation to maintain least-privilege controls at scale.

For End Users

Most users don’t know exactly which role they need. They know they need “Figma access” but not whether that’s Editor, Admin, or Viewer access. Serval’s conversational interface guides them to the right access level. Request access through two interfaces: Conversational Interface: Request access through Slack or Microsoft Teams. Serval helps determine which application and access level you need, routes approvals, provisions access, and automatically revokes access when the time limit expires. My Access Portal: Request specific role access to applications directly at app.serval.com. Serval automates eligibility checks, approval routing, and provisioning.

Next Steps

Get Started

Admin Quickstart Guide

Access Concepts

Overview of access concepts

Request Access

End User Request Guide