Back to Identity and Access Management (IAM)
5.4 ~45 min
Implement and manage authorization mechanisms
Overview
The most testable IAM lesson. Distinguish RBAC, rule-based, MAC (labels/clearances), DAC (owner-discretion), ABAC (attributes), and risk-based, plus PDP/PEP enforcement.
Key topics to master
- Role-Based Access Control (RBAC)
- Rule-based access control
- Mandatory Access Control (MAC)
- Discretionary Access Control (DAC)
- Attribute-Based Access Control (ABAC)
- Risk-based access control
- Policy enforcement: PDP / PEP