Answer-first summary for fast verification
Answer: Use RBAC to assign roles to users and ABAC to define access based on attributes like department and job title.
Combining RBAC and ABAC provides a comprehensive access control strategy. RBAC is used to assign roles to users, ensuring that they have the appropriate level of access. ABAC is then used to define more granular access based on attributes, such as department and job title, ensuring that access is aligned with organizational policies and compliance requirements.
Author: LeetQuiz Editorial Team
Ultimate access to all questions.
You are implementing data object access control in a Databricks workspace. Describe the steps you would take to ensure that only authorized users and service principals have access to sensitive data. Include how you would use role-based access control (RBAC) and attribute-based access control (ABAC) in your implementation.
A
Use RBAC to assign roles to users and ABAC to define access based on attributes like department and job title.
B
Use ABAC to assign roles to users and RBAC to define access based on attributes like department and job title.
C
Use RBAC only to assign roles to users, without considering attributes.
D
Use ABAC only to define access based on attributes, without considering roles.
No comments yet.