SSO + MFA + RBAC

This commit is contained in:
Austin Songer 2020-01-21 20:41:05 +00:00
parent b9e22a6bbb
commit 570a64a74a

View File

@ -5220,14 +5220,28 @@ Authorization is the process of identifying what level of access the service or
<details> <details>
<summary>Explain what is Single Sign-On</summary><br><b> <summary>Explain what is Single Sign-On</summary><br><b>
SSO (Single Sign-on), is a method of access control that enables a user to log in once and gain access to the resources of multiple software systems without being prompted to log in again.
</b></details> </b></details>
<details> <details>
<summary>Explain MFA (Multi-Factor Authentication)</summary><br><b> <summary>Explain MFA (Multi-Factor Authentication)</summary><br><b>
Multi-Factor Authentication (Also known as 2FA). Allows the user to present two pieces of evidence, credentials, when logging into an account.
- The credentials fall into any of these three categories: something you know (like a password or PIN), something you have (like a smart card), or something you are (like your fingerprint). Credentials must come from two different categories to enhance security.
</b></details> </b></details>
<details> <details>
<summary>Explain RBAC (Role-based Access Control)</summary><br><b> <summary>Explain RBAC (Role-based Access Control)</summary><br><b>
Access control based on user roles (i.e., a collection of access authorizations a user receives based on an explicit or implicit assumption of a given role). Role permissions may be inherited through a role hierarchy and typically reflect the permissions needed to perform defined functions within an organization. A given role may apply to a single individual or to several individuals.
- RBAC mapped to job function, assumes that a person will take on different roles, overtime, within an organization and different responsibilities in relation to IT systems.
</b></details> </b></details>
<details> <details>