An organization is using an enterprise resource management (ERP) application. Which of the following would be an effective access control?
A.
User-level permissions
B.
Role-based
C.
Fine-grained
D.
Discretionary
Explanation:
Role-based access controls the system access by defining roles for a group of users. Users are assigned to the various roles and the access is granted based on the user’s role. User-level permissions for an ERP system would create a larger administrative overhead. Fine-grained access control is very difficult to implement and maintain in the context of a large enterprise. Discretionary access control may be configured or modified by the users or data owners, and therefore may create inconsistencies in the access control management.