The effective management of access rights
Role-based access control (RBAC) refers to the method of assigning permissions to users based on their role in an organization. It provides differentiated control and a simple, manageable approach to access management that is less error-prone than assigning permissions to individual users.
With RBAC, employees can access only the information they need to do their jobs.
In the role-based access control data model, roles are based on several factors, including authorization, responsibility and job authority. This allows organizations to determine whether a user is an end user, an administrator or a special user. In addition, access to computing resources can be restricted to specific tasks, such as viewing, creating or modifying files.
By creating role assignments, you can control access to resources through RBAC. A role assignment consists of three elements: security principal, role definition, and scope.