4.6 Given a scenario, implement and maintain identity and access management

0.0(0)
studied byStudied by 0 people
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/4

flashcard set

Earn XP

Description and Tags

SAML

Multifactor authentication

access controls

privileged access management tools

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

5 Terms

1
New cards

What is SAML and what does this do?

SAML stands for Security Assertion Markup Language. This allows for user to be authenticated to a 3rd party database.

2
New cards

What is OAuth and what does this do?

OAuth is an authorization framework that was built for more modern systems. This will grant websites or applications access to their information on other websites but without giving them the passwords.

3
New cards

What is Federation?

Federation refers to a method that allows users to access multiple systems and applications using a single set of credentials instead of requiring each user to have their own credentials.

4
New cards

Match the access control type to it’s definition:

Access Control:

Rule-Based

MAC

ABAC

DAC

RBAC

Description:

Usually used in a high security area to where the operating system limits the operation on an object. An object can be confidential, secret, top secret, etc.

You are the creator of a resource and get to decide who gets access to that resource.

This is based on your role in your organization. Administrators provide access based on the role of the user.

Access is determined through system-enforced rules and is a generic term for following rules.

This is a more modern access control. There can be criteria that a user has to meet in order to access that data. This can be anything from IP address, time of day, relationship to the data, etc.

Rule-Based: Access is determined through system-enforced rules and is a generic term for following rules.

MAC (Mandatory Access Control): Usually used in a high security area to where the operating system limits the operation on an object. An object can be confidential, secret, top secret, etc.

ABAC (Attribute Based Access Control): This is a more modern access control. There can be criteria that a user has to meet in order to access that data. This can be anything from IP address, time of day, relationship to the data, etc.

DAC (Discretionary Access Control): You are the creator of a resource and get to decide who gets access to that resource.

RBAC (Role Based Access Control): This is based on your role in your organization. Administrators provide access based on the role of the user.

5
New cards

Define Password Vaulting

This is used to define primary passwords stored in a password “vault” and the “vault” controls who has access to see these passwords.

Explore top notes

Explore top flashcards