The first step to enable work authorizations is to define which user groups and object types require approval process controls. To begin, navigate to Admin > Users & Policy > Groups and select a non-system defined group to edit.
To access this page, the user must be in the Enterprise Administrator role
On the edit screen, every object that supports work authorizations has a column where the feature can be enabled or disable for this group. In the following example, users in Authgroup2 are required to submit an approval request prior to the IP Set being created.
Once this selection is saved, any user belonging to Authgroup2 cannot create IP Sets without submitting the job request as defined in the next chapter.