Various activities result in Identity Governance building a list of changes, or changesets, that are then submitted for fulfillment. Reviews, policy violations, role changes, and access requests can all result in changes that need to be fulfilled. The Identity Governance fulfillment system evaluates the individual permission change items, determines which applications use these permissions, and then sends the changesets to the appropriate fulfillment target for each application. If needed, administrators can modify the changesets before processing them for fulfillment. Identity Governance users with Bootstrap, Customer, Global, or Fulfillment Administrator authorization assignments can configure fulfillment options.