rbac

rbac Controls

4 controls across 3 frameworks.

CMMC L1

Limit system access to authorized users, processes, and devices

Access Control / Authorized Access

Limit system access to permitted transactions and functions

Access Control / Authorized Access

Access permissions are defined in policy, enforced, and reviewed using least privilege and separation of duties

Protect / Identity Management, Authentication, and Access Control

Role-based access is used and reviewed periodically

Security / Logical and Physical Access