English

Deutsch

English

Deutsch

Appearance

Campaigns

Access review campaigns help organization with compliance and security.

The Acccess Review Campaigns page has two filters to control the data rendered in the table grid based on campaign state and type.

Available states in the filter drop-down are:

  • All
  • Draft
  • Active
  • Completed
  • Cancelled

Available types in the filter drop-down are:

  • All
  • Manager Review
  • Group Review
  • Role Review
  • Application Review
  • Platform Review

The table grid columns provide the Name, Type, Status, Start and End Date, Campaing Owner, and Actions.

Under the Actions column, users can click the different options, like View or if availabe Delete.

Export to CSV is available for completed campaigns.

Campaign Types

Application Review

  • Review application access
  • Validate business need
  • Ensure least privilege

Group Review

  • Review group membership
  • Validate group purposes
  • Clean up unnecessary memberships

Role Review

  • Review generated roles
  • Validate role assignments
  • Optimize role definitions

Platform Review

  • Review of access across distributed systems of the same type.

Campaign Features

Automated Targeting

  • Rule-based selection using Campaign Rules DSL
  • Dynamic campaign scope
  • Scheduled campaigns
  • Recurring reviews

Approval Workflow

  • Multi-level approvals
  • Delegation support
  • Bulk operations
  • Comment requirements

Progress Tracking

  • Real-time progress monitoring
  • Completion statistics
  • Reminder notifications
  • Escalation paths

Creating a Campaign

  1. In Hydden.Control, navigate to Campaigns and click + New Campaign.

  2. For Campaign Name and Description, enter a use case relavant name and description.

  3. From the Campaign Type drop-down, select from the options:

    • Application Review
    • Group Review
    • Role Review
    • Platform Review

  4. Specify the Start Date and End Date, either via manual input or calendar date picker.

  5. From the Campaign Owner drop-down, select from the list of available platform users.

  6. Based on the previous Campaign Type selection, the bottom part of the page will have matching prompts.

    Campaign TypeSelection PromptsDescription
    Application ReviewSelect ApplicationThis can be accounts discovered for different applications based on the same data source type.
    Group ReviewSelect GroupsThese are accounts with group memberships based on different data source types.
    Role ReviewSelect RolesThese are account role associations based on different data source types.
    Platform ReviewSelect PlatformsThese are accounts discovered per data source.

    The Select section, provides search capabilities to easily find the correct entity.

  7. With the Campaign Settings switches, turn on or off, if you want to Auto-approve unchanged access, Require comments on all rejections, or Enable notifications.

  8. On the Automation Rules tile, select from the previously configured Campaign Rules. Refer to Creating Campaing Rules.

  9. On the Access Policies tile, select from the previously configured Access Policies.

  10. Click Save Campaign.

Viewing a Campaign

To view or review a campaign, navigate to Campaigns and in the table grid, click View. The campaign data and options are split across 6 tabs:

  • Overview: Providing the key campaign details at a glance, like start/end date, campaign owner, progess, and statistics.
  • All: Data view for all accounts to be reviewed separated by selected review types, like applications or platform. The table columns are:
    • Account Name: the name of as discovered during data collection.
    • Account ID: the UUID for the account.
    • Reviewer: the field is populated based after the reviewer confirms the approval or rejection action.
    • Status: the current review status for a particular account.
    • Comments: the comments are populated based on optional notes left during the account review.
    • Reviewed On: the date when the account review. The field is populated after the reviewer confirms the approval or rejection action.
    • Actions: either approve (checkmark) or reject (x). When approving an account, an optional note modal provides an option to leave a review note. To approve, even without leaving an optional note, click Confirm. When rejecting an account, a reason for the rejection is required and must be entered into the modal before the rejection can be confirmed.
  • Pending: Data view of all pending accounts. Refer to the information above provided for the All tab, as the actions use the same approval and rejection workflows.
  • Reviewed: Data view of all reviewed accounts. This is the summary table, no actions are available, but the data columns match what is displayed on the All tab.
  • Policies & Rules: The page shows a list of
    • Applied Policies, if used in the campaign.
    • Campaign Rules, as associated with the campaign.
  • Settings: The page provides information on
    • specific Campaign Settings. These settings are only informative and cannot be changed on this tab.
    • Campaign Rule Automation, if available and enabled. Use the on/off switch to enable or disable a given rule. Use the trashcan to delete any rule listed.
    • a list of available rules for the campaign.
    • a Rule Evaluation option. A manually triggered evaluation, provides feedback on automatically approved, rejected, and no decision actions taken during the evaluation.
    • a Create New Rule option. Refer to Creating Campaign Rules

Use the Extend Campaign button to extend any started campaign. Once all data has been reviewed, use Complete Campaign.

Hydden Documentation and Training Hub

Copyright © 2026 Hydden