Question — 146
Tags —
Introdução
RBAC advanced scenarios incluem Privileged Identity Management (PIM) para just-in-time access, approval workflows e time-limited elevated permissions.
Conceito-chave
Privileged Identity Management (PIM): Just-in-time activation de privileged roles com approval workflows, time limits e comprehensive audit trail para minimize exposure de elevated permissions.
Tópicos Relevantes
- Just-in-time role activation
- Approval workflow integration
- Time-limited access grants
- Comprehensive audit logging
- Risk assessment integration
Exemplo Prático
Administrators requesting elevated access para production environments através de PIM, requiring manager approval, limited to 8-hour duration com automatic de-activation e complete audit trail.
Benefícios
- Privileged access minimized
- Approval process enforced
- Time-bound permissions
- Attack surface reduced
- Compliance audit simplified