Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
Which of the following are true regarding Role Based Access Control (RBAC)?
RBAC is a discretionary access control method
An RBAC model is a good fit for a company with high turnover
RBAC assigns group membership based on organizational or functional roles
In an RBAC system, individuals can belong to more than one role
Explanation: RBAC is a discretionary access control method using roles instead of individuals Discretionary access control is a policy determined by the owner of the file (or other Resource). The owner decides who is allowed access to the file and their privileges. A Discretionary Access Control Model outlines which subjects can access what objects based upon Individual user identify. In Role Based Access Control the owner assigns access and privileges to Roles instead of individuals.
Roles are defined in terms of the operations and tasks the role will carry. They can also be assigned based on organizational or functional roles.
Individuals can be assigned to more than one role
High Turnover - The administrator does not need to continually change the Access Control Lists on individual objects. New employees are simply mapped to the role the ACL will recognize
Other points:
An advantage -- The RBAC strategy simplifies the management of access rights and permissions.
A disadvantage of RBAC is difficult if not impossible auditing
Train with Skillset and pass your certification exam. Faster. Guaranteed.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.