A test uncovered that many accounts could view data unrelated to their responsibilities. Which method addresses this concern and helps prevent recurring permission misconfigurations?
Require multifactor checks for all logins
Enforce periodic password changes
Match permissions to each user’s assigned duties
Use shared accounts among staff with parallel roles
Assigning permissions based on each individual's designated duties tackles the root cause of excessive privileges. This approach limits access to resources that align with an employee’s responsibilities, lowering the chance of unauthorized data exposure. Strengthening authentication helps verify identity but does not automatically fix permission creep. Relying on password changes may offer short-term account protection but fails to address underlying issues with unnecessary access. Using shared accounts creates confusion over who has access to what, which complicates security and accountability.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is permission creep, and how does it occur?
Open an interactive chat with Bash
What is the principle of least privilege, and how does it relate to managing permissions?
Open an interactive chat with Bash
How can organizations implement a permissions auditing process to prevent misconfigurations?