Group Access Windows provide time boxed access to one or more users or groups to any number of system resources as defined by the Access Window. This time-boxed reservation system allows more control over member access to system resources using time windows rather than the existing indefinite access based on member permission levels. In this way, member access can be audited at time intervals that meet customer needs.
​

The Group Access Windows feature allows system administrators to manage access permissions for multiple users more efficiently by using group-based access windows. This feature includes automatic assignment and bulk management functionalities, significantly improving the administrative workflow and simplifying the user interface for end-users.

Bulk Creation and Management: Administrators can create access windows for an entire group at once, eliminating the need to set up access for each user individually. This bulk action capability reduces time and effort, especially for large groups.

Centralized Editing: Any changes made to a Group Access Window are automatically applied to all users within that group. This central point of control minimizes repetitive tasks and ensures consistency across the system.

Automatic Assignment: New members added to a group automatically receive the necessary access windows without additional administrative action. This feature simplifies onboarding processes and ensures that all members have the correct permissions from the moment they join the group.

Flexible Access Control: Administrators can still manage individual access within a group, allowing for specific overrides when necessary without affecting the entire group's permissions.

Reduced Repetitive Tasks: The centralized group-level access management allows administrators to perform updates and changes in one place, which significantly reduces time spent on repetitive tasks.

Improved Accuracy: Centralized management helps in maintaining consistent access rules, reducing the risk of errors that can occur when managing individual permissions separately.

The Group Access Window feature also introduces four new log events and improves the differentiation between a user's access request and an admin creating access for users:

User-Friendly Interface: The feature integrates a user list within the Access Window page, displaying all users and groups with access. This makes it easy for users to see who else has access and understand their own permissions.

Visual Indicators: Clear indicators show which resources users have access to and through which groups these permissions are granted, reducing confusion about resource accessibility.

Access Window Tabs: Each user's profile now includes a tab showing all Access Windows they have permissions for, including those inherited through group memberships. This provides users with a comprehensive view of their access rights.

Notifications and Alerts: Users receive notifications when their access changes, either through group modifications or updates to the Group Access Window. This keeps them informed about their current permissions and any changes that might affect their access.

Automatic Access Assignment: Users added to a group immediately gain access to the relevant resources, ensuring they have the necessary permissions without delay. This automatic assignment removes the need for users to request access separately, simplifying their onboarding process.

Consistent Access Experience: As access windows are centrally managed, users experience fewer disruptions and more consistent access to the resources they need.

Administrators could create access windows for multiple users simultaneously. However, each selected user would still receive an individual access request.

Admins could extend or shorten the duration of any access request.

Admins had the ability to Approve, Deny, and Revoke access windows.

Member Management: Administrators can now add members, organization groups, and facility groups to the current access window.

Custom Naming: The access window can be given a custom name (optional, defaulting to the user’s email).
​

By default, the AW name will be the email of user making the access window, in the screenshot below, that is dev@dispel.io
​

Group Permission Toggles: Toggles next to groups allow admins to enable or disable specific group permissions for the access window.

Individual Permission Toggles: Toggles next to individual users allow admins to enable or disable specific user permissions for the access window, independent of group permissions.

Get Access Window immediately when added to a Group that has Access Windows/ are added to Access Windows.
​

An "Access Window" tab is added to the individual user page, groups page, and facility groups page. This tab lists all access windows the user has access to, indicating which of those access windows are granted through group membership.
​