ZSwitch Access Request Instructions

Overview

This page explains how Ooma employees can request access to the ZSwitch system. Please follow the steps carefully to avoid delays in the approval process.

We apologize for the complexity of this process. This is being set up quickly to meet compliance needs. A friendlier and more streamlined access request portal will be coming soon.

Step 1: Register Your Microsoft User

  1. Please pay special attention to step 3. You must use the windows icon (the black icon of four boxes) to login.
  2. Go to sso.employee-access.zswitch.net.
  3. Click the Windows icon.
  4. Log in with your normal Ooma email and password.
  5. You will be presented with a message saying "Permission Denied".
  6. This step registers your account in Authentik, allowing permissions to be assigned to you later.

Step 2: Request Permission

  1. Visit the request form at:
    https://oomacorp.atlassian.net/.../create/1414
  2. In Change requested, enter:
    ZSwitch Access Request For <Your Name>
  3. Leave Product and Environment blank.
  4. In Describe the change, specify the access type(s) you need. The available types are:
    • I) Super-Duper — NetOps Only
    • II) Super — Full Access to ZSwitch excluding the master account (has read-only acces to master)
    • III) Read-Only — Access to all accounts in read-only mode
    • IV) Tokenized — Can only use pre-scoped tokens
  5. In Justification, explain why you need the selected access type(s) to perform your job duties. And provide your manager's email for verification purposes.
  6. Set Risk Likelihood to Highly Unlikely.
  7. Set Impact Level to No Impact.
  8. For Impact Details and Scope, enter:
    This is an access request ONLY. There is no possibility of impact.
  9. For Implementation Plan, enter:
    In Authentik administration portal, add the applicable groups to the requesting user after approval is completed.
  10. For Test Plan, enter:
    End user will test upon completion of the work after implementation.
  11. For Is a roll-back possible?, select Yes.
  12. For Backout Plan, enter:
    In Authentik administration portal, remove the applicable groups from the requesting user.
  13. For Has the rollback plan been tested?, select Yes.
  14. Click Send to submit your request.

After Submission

Once your request is approved, your access permissions will be assigned in the Authentik system. You can then log into ZSwitch using one of the approved proxies listed on the main proxy page.