A security administrator needs to grant a developer temporary administrative rights to a production server to deploy a critical patch. To minimize risk, the administrator wants these rights to be automatically revoked after two hours. Which of the following PAM concepts BEST fits this requirement?
Just-in-time (JIT) permissions are a core component of Privileged Access Management (PAM) that grants temporary, on-demand administrative rights to users for a specific task or a limited time period. Once the task is complete or the time expires, the privileges are automatically revoked, enforcing the principle of least privilege. Password vaulting is for securely storing credentials, not for granting temporary access. Password managers are typically used by end-users to store many passwords. Ephemeral credentials are the temporary credentials themselves, while JIT is the process of granting and revoking the temporary access.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are Just-in-Time (JIT) permissions and why are they important?
Open an interactive chat with Bash
How do Just-in-Time permissions differ from standard privileged accounts?
Open an interactive chat with Bash
What tools or systems commonly implement Just-in-Time permissions?