Which practice best supports the principle of least privilege in access control?

Study for the EC-Council Certified Ethical Hacker (CEH) v13 Exam. Utilize flashcards and multiple-choice questions with helpful hints and detailed explanations. Excel in your exam preparation!

Multiple Choice

Which practice best supports the principle of least privilege in access control?

Explanation:
Least privilege means giving each user only the permissions they truly need to do their job, nothing more. This minimizes risk if an account is compromised, or if a mistake is made, because the user cannot access or affect resources they don’t need for their work. The best practice here is granting access based on the minimum necessary to perform a job. That directly implements the principle by tying every permission to a specific, required task and eliminating extra access that could be misused. It also supports safer, more auditable control over who can do what. Granting administrator rights by default exposes everything to everyone, creating unnecessary risk. Providing constant access to contractors can bypass time-bound or job-specific needs, increasing exposure. Restricting access to essential personnel aligns with limiting access but must be explicitly tied to the minimum necessary permissions for each role to avoid over- or under-provisioning.

Least privilege means giving each user only the permissions they truly need to do their job, nothing more. This minimizes risk if an account is compromised, or if a mistake is made, because the user cannot access or affect resources they don’t need for their work. The best practice here is granting access based on the minimum necessary to perform a job. That directly implements the principle by tying every permission to a specific, required task and eliminating extra access that could be misused. It also supports safer, more auditable control over who can do what.

Granting administrator rights by default exposes everything to everyone, creating unnecessary risk. Providing constant access to contractors can bypass time-bound or job-specific needs, increasing exposure. Restricting access to essential personnel aligns with limiting access but must be explicitly tied to the minimum necessary permissions for each role to avoid over- or under-provisioning.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy