---
title: Access requests
description: In Identity Governance, end users can request access to resources, such as target applications, entitlements, or roles.
component: pingoneaic
page_id: pingoneaic:identity-governance:administration/access-request-preface
canonical_url: https://docs.pingidentity.com/pingoneaic/identity-governance/administration/access-request-preface.html
keywords: ["Access request", "Request access", "Approve access", "Deny access", "Access catalog"]
---

# Access requests

In Identity Governance, end users can request access to resources, such as target applications, entitlements, or roles.

You define the resources end users can request by adding them to the *access catalog*.

An organization works with access requests as follows:

1. An Identity Governance administrator who can [configure access requests](access-request-configure.html). This includes defining which resources (applications, entitlements, and roles) end users can request in the access catalog.

2. After an administrator defines requestable resources in the access catalog, end users submit requests to [gain](../end-user/access-requests-request-access.html) or [remove](../end-user/access-request-revoke-access.html) (managers only) access to resources using the hosted account pages.

3. Approvers [approve or deny access requests](../end-user/access-request-approve-access.html): End users configured as the *approver* (designated owner) to review and approve or reject the request. The items that are displayed to the approver are known as *request items*.