Role-based access control (RBAC)
"Role-based access control (RBAC)" relies on the principle that most users in a similar situation need similar access. In order to reduce the risk of permissions being inconsistent, create templates for each role that are applied to all users in that role. If a new user joins the role, he will be given the template permissions, if a user changes role, the permissions will be stripped and the new template will be added.
Role Based Access Control facilitates:
- Administrator overview of permissions
- Operational efficiency
- Risk of 'permissions' creep