To Top

Role-Based Access Control (RBAC)

Role-Based Access Control  (RBAC) lets employees have access rights only to the information they need in order to perform their jobs. All other access is prevented. This security principle is known as the principle of "least privilege."

Modern enterprise environments are complex consisting of hybrid and/or multicloud architecture.  As multicloud adoption continues to increase, enforcing principals of least privilege is getting difficult.

How can ObserveID achieve RBAC?

ObserveID fully automates identity lifecycles across all systems and applications, both cloud and on-prem, in the organization’s ecosystem. Access for identities through the use of roles. These roles are associated to an identity based on assigned or detected access. Easy-to-use role management user interface allows administrators to configure entitlements from target systems within a role. These roles can represent both cloud and/or on-prem entitlements.

ObserveID offers the two primary models of access control: Attribute-Based Access Control (ABAC) and Role-Based Access Control (RBAC). ABAC control is applied in the use case of birthright access management where a user is automatically on-boarded with an identity profile and associated to entitlements that map to pre-existing attributes in the originating source system.

ObserveID applies RBAC during manual access request but also has the ability to dynamically assign roles associated to certain applications and has the potential for bulk access in order to avoid tedious manual access requests.

Role-Based Access Control image