Answer-first summary for fast verification
Answer: Use a hybrid model combining RBAC with attribute-based access control (ABAC) for dynamic role assignment.
A hybrid model combining RBAC with ABAC allows for more flexibility and dynamic role assignment based on attributes such as department, project, or time, which enhances security and aligns with the least privilege principle.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You are tasked with designing a solution for assigning and delegating privileged roles within your organization. The organization has a complex structure with multiple departments and a need for granular control over access rights. Describe a detailed approach using the enterprise access model to ensure that roles are assigned and delegated securely, considering factors such as role-based access control (RBAC), least privilege principle, and the use of Microsoft Entra ID for identity management.
A
Implement a flat RBAC model with minimal role hierarchy.
B
Use a hybrid model combining RBAC with attribute-based access control (ABAC) for dynamic role assignment.
C
Adopt a strict RBAC model with predefined roles and manual role assignment based on job titles.
D
Rely solely on Microsoft Entra ID's default roles without customizing them.
No comments yet.