00:01
Hello students, to develop a plan for implementing access control models in an enterprise based on the principle of least privilege, we need to consider the various elements of an access of control and the best practice.
00:16
So the access of control is essential for protecting the critical information and the devices on the network while ensuring that the users have an appropriate level of access.
00:25
So the principle of the least privilege states that the user and the processor should have the minimal level of access necessary.
00:34
So as the privilege states that the users, users and the processors, the processors as these both must, it should have, it should have the minimal minimum level of level of access necessary to perform their function.
01:04
So so as of here access necessary to perform their function.
01:12
So as let us discuss about the addresses that as the elements of the access control.
01:19
So the elements, elements of the access control of the access control are as the are as the authentication, authentication.
01:37
So where the first step access control is verifying the identity, identify of the users or the entity attempting to access the system.
01:46
So this can be done by using the username and the password as the multi -factor authentication or the biometrics.
01:54
So the next is an authorization.
01:57
Authorization.
01:58
So after an authentication, we need to determine what actions are the resources users are allowed to access.
02:07
So authorization defines the permissions and the rules as the role based, the role based on access control will be used to access to assign the rules to the user based on their job functions.
02:21
The third comes is an access control list.
02:25
Access control list.
02:30
Access control list that is acls...