Identity Governance allows you to create SoD approval policies and assign them to SoD policies to control whether potential SoD violations require approval before the set of access requests are fulfilled. You can also set an approval policy as the default SoD approval policy that will apply to any SoD policy with no SoD approval policy assigned. If no SoD approval policy is assigned, and no default SoD approval policy is set, potential SoD violations do not require approval, and Customer, Global, or Separation of Duties Administrators — along with Separation of Duties owners — may resolve or approve detected violations. For more information, see Assigning SoD Approval Policies. You can also run an Insight Query to view all your SoD policies and the SoD approval policies assigned to them.
NOTE:Only users with Customer, Global, or SoD Administrator authorization can set the SoD approval policy. For more information, see Assigning a Default SoD Approval Policy.