Lumos AppStore Guide for App Owners and Approvers

Last updated: November 18, 2025

In order to help you (Lumos Admin) prepare your Approvers and App Owners for the Lumos AppStore launch, we have provided a guide for you to share.

You can either make a copy of this shared template or copy and paste what we have below.

Lumos AppStore Guide for App Owners and Approvers

By [Your Company or Team Name]

Purpose

The Lumos AppStore allows employees to request access to applications through a self-service interface. These requests are routed to designated app owners or approvers based on predefined policies.

As an App Approver, your role is to review and act on these access requests in a timely and secure manner. This ensures that users only receive access to applications when appropriate, supporting compliance, operational efficiency, and the principle of least privilege.

As an App Owner, your role is to provision access as needed whenever auto-provisioning is not enabled. 

Request Review Frequency

Access requests can be submitted at any time. We recommend that approvers review and respond to requests within 1–2 business days to avoid delays in employee productivity.

Notifications will be sent to you via <Slack, email, or ITSM> customize this depending on your organization’s configuration.

Stakeholders

  • App Approver: Responsible for reviewing and acting on access requests

  • App Owner: Responsible for provisioning ONLY when auto-provisioning is not enabled. You will be notified if you need to actively provision an account

  • IT Team: Manages app integrations, policy enforcement, and provisioning

  • Security / GRC: Ensures approver coverage and compliance alignment

Process Overview

  1. A user requests access to an application via the Lumos AppStore

  2. The request is routed to the designated approver(s)

  3. The approver receives a notification (Slack, email, or ticket)

  4. The approver reviews the request and takes one of the following actions:

    • Approve

    • Deny

    • Modify

  5. The user is notified of the decision and granted or denied access

  6. All actions are recorded for audit and compliance purposes

Responsibilities of App Owners and Approvers

Responsibility

Description

Timely response

Review and act on requests within 1–2 business days

Evaluate context

Consider the user’s role, justification, and policy alignment

Follow policy

Apply your team’s or department’s access guidelines

Escalate when needed

Review with internal escalation paths as needed

Participate in periodic reviews

Some apps may be included in quarterly access reviews

How to Review and Approve Requests in Lumos

  1. Log in to Lumos Identity using SSO

  2. Click on left hand side menu

  3. Click on Task Center

  4. Review any pending access requests

  5. For each request, review the following:

    • Requestor’s name and department

    • Application name

    • Business justification provided

    • Requested duration (if applicable)

  6. Choose one of the following actions:

    • Approve: The request is fulfilled automatically or via a ticket

    • Deny: The request is declined; a reason can be provided

    • Add Comment (to requester)

    • Modify Permission or Access Length (as needed by clicking the pencil beside the permission requested)

Best Practices

  • Review requests promptly to avoid workflow bottlenecks

  • Approve only when access is appropriate for the user’s role

  • Default to the least privileged role unless otherwise justified

  • Use time-bound access for contractors or short-term projects

Resources and Templates

Resource

Link

Requesting Access to an App

Help Center Guide

Approver Help Article

Help Center Guide

Overview Video (2 min)

Watch Here (Coming soon!)

Support

If you’re unsure how to proceed with a request or need to update the list of app approvers, please reach out to your IT team or AppStore administrator. Additional support documentation is available in the Lumos Help Center.