• Improve request quality with consistent metadata requirements

• Cap newly configured secret and certificate lifetimes when a maximum is set

• Require ownership coverage to prevent unmanaged applications

• Standardize environment and department classification

• Control application request approval behavior and optional TOPdesk ticket creation

• General: enable app creation, approval flow, user import, all-application visibility, owner deletion, and credential lifetime limits

• Metadata: choose which request/edit fields are visible and which included fields are required

• Application Requests: route requests through a validated TOPdesk integration and configure create/approve/reject incident behavior

• Environments and Departments: maintain tenant picklists used by application metadata

• Ownership: set minimum co-owner count, notification target, and default administrators for newly created or imported applications

• Keep Business Justification required for all requests

• Require Environment and Department/Team for reporting and ownership routing

• Require Elevated Permissions Justification when elevated access is enabled

• Require Contact Email for operational follow-up and incident response

• Core Context: Business Justification, Project Name, Department/Team, Environment, Business Criticality, Intended Audience, Expected Go-Live Date

• Requirements: Technical Requirements, Data Access Requirements

• Compliance & Contact: Compliance Notes, Requires Elevated Permissions, Elevated Permissions Justification, Contact Email, Contact Phone

1. Configure settings in a maintenance window

2. Validate with test requests from a non-admin account

3. Announce changes to application owners and requesters

4. Revisit required metadata quarterly based on audit findings