An administrator is tasked to configure privileges for the new joiners in the department.
The admin is selectively granting privileges and ensuring that not all the team members can access all the resources. Which principle is the administrator following?
Click on the arrows to vote for the correct answer
A. B. C. D.Answer: D.
Option A is INCORRECT.
This is not a valid option.
Option B is INCORRECT.
This is not a valid option.
Option C is INCORRECT.
This is not a valid option.
Option D is CORRECT.
The administrator follows the “Principle of least privilege” as not all the privileges are granted to all the new joiners.
The privileges are being selectively granted.
Reference:
https://docs.aws.amazon.com/IAM/latest/UserGuide/best-practices.html#grant-least-privilegeThe principle that the administrator is following is the Principle of Least Privilege, also known as the Principle of Least Authority. This principle states that a user or process should be given only the minimum level of access or privileges necessary to perform their job or task.
In this scenario, the administrator is selectively granting privileges to the new joiners in the department and ensuring that not all team members can access all resources. By doing so, the administrator is limiting the exposure of the system to any potential security threats or breaches, as well as reducing the risk of accidental changes or errors made by users.
The Principle of Least Privilege is a fundamental security concept that is applied across various industries and technologies, including cloud computing. By following this principle, administrators can minimize the attack surface of their systems, limit the potential damage of any security incidents, and maintain the confidentiality, integrity, and availability of their resources.
The other answer options are incorrect or not relevant to this scenario. The Principle of Privileged Users implies that certain users have elevated privileges that give them access to all resources, which is not the case in this scenario. The Best Practices of Permission Advisory is not a known security principle or concept. Finally, the Least Privilege of Group Principle is not a commonly recognized security principle and is not applicable to this scenario.