ConductorOne Docs

Create request catalogs

A request catalog is a curated list of apps scoped to a specific employee group, so every person can see and request the access relevant to their work.

What’s a request catalog?

Everyone in your company needs to be able to request access to the software your whole team uses to stay in touch and get your work done. But an employee in the Accounting department probably doesn’t need access to the specialized tools the Product Design team uses, or vice versa. For both simplicity and security, limit the list of resources each employee at your company can request by creating request catalogs.

Request catalogs are groups of resources and entitlements that you create in ConductorOne. You determine the contents of each catalog and who the catalog is visible to. You’ll likely want to create two types of catalogs:

  • A catalog with the tools and access used by everyone in your company, which is visible to everyone
  • Catalogs scoped to certain departments, job types, or access levels, which are each only visible to the folks in those groups

When requesting access in ConductorOne or through Slack, each employee can see and request the contents of all the catalogs they have access to, but nothing more.

Create a new request catalog

  1. In the navigation panel, open Manage and click Catalogs.

  2. Click Create.

  3. Give the new catalog a name and enter a description. You can edit these later, if needed.

  4. Click Create catalog. The new catalog’s details page opens.

  5. Add entries to the catalog. Click Add catalog entry to select the entitlements you want to include in your new catalog. Use the search and filter tools to zero in on the entitlements you need.

    Make sure you’re adding the right access entitlements! If you have applications that are sourced through your identity provider (IdP), be sure to add the access entitlement for the app itself, and not the access entitlement for the app via IdP, which only grants the ability to SSO into the app.

    Here’s an example. When DocuSign is sourced through Okta, you’ll see two DocuSign access credentials. To add Docusign access to your catalog, choose the DocuSign credential entitlement, not the Okta app entitlement.

Make sure every entitlement you add has a request policy set! Make sure that each entitlement you add to a request catalog has a request policy set on either the application or the entitlement. If no request policy is set, the catalog will bpublish without issue, but users attempting to request the entitlement will see an error message. This is a known issue and will be corrected.

  1. When you’ve selected the entitlements you want to add to the catalog (don’t worry, you can always adjust this list later), click Save catalog entries.

  2. Set who can view and request items from this catalog. In the Request catalog area of the screen, click Edit.

  3. Under Rerequestable by, set whether this catalog can be viewed and requested by all employees, or just members of specific groups. If you choose specific groups, use the dropdown to find and add the group or groups who can view and request this catalog’s contents.

  4. Click Save.

What’s next? You can continue to fine-tune your new catalog, or go on to the next step and publish it.

Publish a request catalog

Publishing a request catalog makes the catalog’s contents available to the selected requesters. Leave a catalog in the Not published state until you’re ready to launch it.

  1. In the navigation panel, open Manage and click Catalogs.

  2. Choose your catalog from the list of all catalogs created by your company. The newest catalogs are added to the bottom of the list.

  3. On the catalog’s details page, click Publish.

That’s it! The catalog now shows a Published label on the details page and in the list of catalogs, and its contents are visible to the employees you chose.

πŸ’‘ Need to temporarily or permanently unpublish a catalog? Click Unpublish on the catalog’s details screen to return the catalog to draft mode.

Add an entitlement to an existing request catalog

There are two ways to add an entitlement to a catalog.

You can add an entitlement to an existing catalog by navigating to the catalog’s details page and clicking Edit catalog entries. (See Step 5 of Create a new request catalog for step-by-step instructions.) This method is ideal for times when you want to add multiple entitlements to a single catalog.

Or you can add an entitlement to an existing catalog from the entitlement’s details page. This method is ideal for times when you want to add a single entitlement to multiple request catalogs.

  1. In the navigation panel, open Manage and click Applications.

  2. Navigate to the entitlement you want to add to a catalog:

    • Click the application’s name
    • Click the Entitlements tab
    • Locate the entitlement you want and click its name
  3. In the Access requests section of the entitlement’s details page, click Edit.

  4. Use the Request catalogs dropdown to select one or more catalogs you want to add the entitlement to.

  5. Click Save.

The entitlement is now included in the request catalog.

The entitlement is now included in the request catalog. Users who have access to the request catalog will see the entitlement as an option when they fill out the request access form in ConductorOne or on the Slack app.

Frequently asked questions about catalogs

Where can I see which request catalogs an entitlement is in?

All the catalogs an entitlement is part of are shown on the entitlement’s details page, in the Access requests section.

Click a request catalog’s name to go to the catalog details page and see all of the entitlements included in that catalog.