Eligibility, role, risk, and SoD evaluated.
- Resolves user identity attributes, department, role hierarchy, and employment status
- Determines request eligibility against access policies and entitlement rules
- Evaluates SoD conflicts and privilege thresholds before options are displayed
- Applies system sensitivity and data classification context
- Filters out ineligible or non-compliant access paths automatically
