---
title: Request to remove access
description: Managers can remove access from their direct reports through a remove access request for accounts (applications), roles, and entitlements.
component: pingoneaic
page_id: pingoneaic:identity-governance:end-user/access-request-revoke-access
canonical_url: https://docs.pingidentity.com/pingoneaic/identity-governance/end-user/access-request-revoke-access.html
keywords: ["remove access", "revoke access", "access request", "manager"]
---

# Request to remove access

Managers can remove access from their direct reports through a *remove access request* for accounts (applications), roles, and entitlements.

When a manager submits the remove access request, the approver(s) of the resource approve or reject the remove access request.

To submit a remove access request:

1. [Sign on as an end user](../../end-user/hosted-pages.html#sign-on-end-user) and navigate to My Directory > Direct Reports.

   Learn more in [direct reports](../../end-user/hosted-pages-account.html#menu-items-available-with-add-on-capabilities).

2. Click any of the following tabs:

   1. Accounts (applications)

   2. Entitlements

   3. Roles: For roles, if the Assignment column has the value of `rule-based`, you can't request to revoke the role. Rule-based indicates that the role is assigned to a user if a specified condition is met.

3. Click the ellipsis icon ([icon: more_horiz, set=material, size=inline]) next to the desired resource, and click Revoke.

4. Next, fill out the following fields:

   1. Justification: Enter a reason for revoking access to the selected resources.

   2. Priority: Select one of the following:

      |   |                                                                                                                                         |
      | - | --------------------------------------------------------------------------------------------------------------------------------------- |
      |   | The priority levels don't affect how Identity Governance processes requests. your company determines the value assigned to the request. |

      * Low

      * Medium

      * High

   3. Apply Expiration Date: Optional. Expire (cancel) the remove access request if the approver(s) haven't approved or rejected it by the specified date.

5. Click Submit Request.