| Author |
Role-based access control
|
|
| shockensmith 2004-01-12, 3:18 pm |
| I have been trying to figure out what Comptia feels is the correct answer for the following question: "Can a user be assigned to only one role or many roles in a role-based access control system?" I have read books with varying answers on this. TCAT's book says many, but the Exam Cram book says only 1 role. | |
| DSComputers 2004-01-12, 6:44 pm |
| I'm pretty sure you can only have one role.
Though using rule based you should be able to be a member of many groups. | |
| RussS 2004-01-14, 12:48 am |
| Interesting. I have always been of the opinion you can belong to several groups as far as the concept goes. However with MS a deny over-rides an approve so I guess there are yes's and no's .... lol | |
| Tarzanboy 2004-01-14, 10:45 am |
| RBAC uses a many-to-many approach with users and roles, which is a caveat of Flat RBAC. A user may be assigned multiple roles and multiple users may be assigned to a single role.
Just be careful on the terminology:
RBAC - Roles/Principals
DAC - Groups
MAC - Labels
Cheers,
TB |
|
|
|