Which approach aligns with the security principle that dictates user permissions should be limited to the bare minimum necessary to accomplish their work tasks?
Assigning permissions based strictly on job requirements
Providing users with read-write access to all network devices
Granting full rights to all users to avoid performance bottlenecks
The principle of least privilege is about limiting user permissions to the most restrictive set necessary to perform job duties, thus mitigating the potential risk and impact of a security incident. Granting full rights regardless of role would violate this principle. Time-of-day restrictions are a form of access control but do not inherently limit the scope of access rights to essential tasks. Read-write access to all network devices would provide excessive privileges that are not aligned with the principle.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the principle of least privilege?
Open an interactive chat with Bash
Why is it important to limit user permissions?
Open an interactive chat with Bash
What are the consequences of not following the principle of least privilege?