- 08 Jul 2026
- 4 Minutes to read
- Print
- DarkLight
- Download PDF
Access Hub Overview
- Updated on 08 Jul 2026
- 4 Minutes to read
- Print
- DarkLight
- Download PDF
Access Hub is Clarity Security’s self-service portal for business users. It gives people a simple place to request the access they need, track their requests, and — for managers — review and act on requests from their team, without ever touching the admin console.
This guide set walks through each common task. Start here for the lay of the land, then jump to the guide for the task you want to do.
Who Access Hub is for
Access Hub recognizes two kinds of people, and what you can see and do depends on which you are:
You are… | You can… |
|---|---|
An end user (business user) | Request access for yourself, see your own open/approved/denied requests, and view your current access and upcoming expirations. |
A manager or admin | Everything an end user can do, plus request access on behalf of your team members, approve or deny requests that need your action, and view your team’s access. |
Whether you’re treated as a manager is determined by whether you manage other people (your “direct reports” or subordinates) in Clarity. Manager-only features simply don’t appear if you don’t manage anyone — there’s nothing to turn on.
How you get here: If your organization has Access Hub enabled, business users are taken to it automatically after signing in. The portal lives at /access-hub and opens on your Dashboard.
Getting around
A collapsible navigation bar runs down the left side of every page. Depending on your role you’ll see some or all of:
Dashboard — your home page: at-a-glance counts and quick actions.
Manage Access — request access and view requests (this is where most tasks start).
Access Reviews — (managers/admins only) periodic access certification campaigns.
Profile — your profile details and password.
Files — (only if enabled for you) documents shared with you.
Access Reviews is a separate feature for certifying existing access on a schedule — it is not the same as approving an access request. Approving/denying requests is covered in this guide set; Access Reviews has its own workflow.
The Dashboard
The Dashboard shows Access Updates cards with live counts. Click any card to jump straight to a filtered list:
My Open Requests — requests submitted by you or on your behalf that are still open.
My Expirations — your access that’s expiring soon.
Approved Requests — requests for you (or your team) that were approved and provisioned.
Denied Requests — requests that were not approved.
Needs My Action — (managers only) requests from your direct reports waiting on your response.
Subordinate Requests / Subordinate Expirations — (managers only) team-wide views.
It also offers Quick Actions — most notably Request Access, which is the fastest way to start a new request.
The two pages you’ll use most
Almost every task in this guide set happens on one of two pages inside Manage Access:
1. Request Access
Path: /access-hub/access/request-access
A shopping-cart style experience. You browse available access (organized into bundles and entitlement groups), add what you want to a cart, set how long you need it, add a justification, and submit. Managers can additionally choose who the request is for.
2. Open Requests (“All Requests”)
Path: /access-hub/access/open-requests
A filterable list of requests. End users see their own requests here. Managers get a toggle to switch between All Requests, My Requests, and Need My Action, plus a status filter (All / Pending / Approved / Denied). This is where managers approve and deny requests.
Key concepts
Bundle / Entitlement group — access is grouped into named packages on the Request Access page. A bundle delivers a predefined set of entitlements; “All other available access” lets you pick individual entitlements.
Duration — every request has a time limit chosen from a fixed list: 24 Hours, 7 Days, 14 Days, 30 Days, 60 Days, 90 Days, or Permanent. Access starts from the date of approval, not the date you requested it.
Justification — a short written reason for the request. It is required before you can submit.
Request status — every request is Pending, Approved, or Denied. Approved requests are provisioned (the access is granted); denied requests are recorded with the denier’s reason.
On your behalf (proxy) requests — a manager can request access for a team member. These show up as “subordinate” or proxy requests in the lists.
Pick your task
Requesting access
I want to… | Guide |
|---|---|
Request access for myself (I’m an end user) | |
Request access for myself (I’m a manager/admin) | |
Request access for someone on my team |
Acting on requests (managers/admins)
I want to… | Guide |
|---|---|
Approve a request that needs my action | |
Deny a request that needs my action |
Managing requests and existing access
I want to… | Guide |
|---|---|
Withdraw a request I submitted (still pending) | |
See what access I (or my team) currently have | |
Give up access I no longer need | |
Renew expiring/expired access or re-submit a denied one |
Account
I want to… | Guide |
|---|---|
Change my sign-in password |
📹 Visual walkthrough
A single reel covering every use case end to end (each clip is also embedded in its own guide):
Video Insert