Identity and Access Management Terms and Concepts Flashcards
"A directory service is a software system that stores, organizes, and provides access to information in a directory."
RBAC is a method of regulating access to computer or network resources based on the roles of individual users within an enterprise.
"ABAC is an access control method where access rights are granted based on attributes, such as user role, department, and security clearance level."
Describe the concept of attribute-based access control (ABAC).
What is single sign-on (SSO)?
Explain the concept of role-based access control (RBAC).
What is a directory service?
Define privileged access management (PAM).
SSO is an authentication process that allows a user to access multiple applications with one set of login credentials.
"PAM is the process of managing and controlling access to critical systems and data by privileged users, including administrators and superusers."
"LDAP, or Lightweight Directory Access Protocol, is an open, vendor-neutral, industry standard for accessing and maintaining distributed directory information services over an IP network."
Explain the use of LDAP in identity management.