Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam
Go to Exam

Exam CISSP topic 1 question 319 discussion

Actual exam question from ISC's CISSP
Question #: 319
Topic #: 1
[All CISSP Questions]

A user is allowed to access the file labeled "Financial Forecast," but only between 9:00 a.m. and 5:00 p.m., Monday through Friday. Which type of access mechanism should be used to accomplish this?

  • A. Minimum access control
  • B. Limited role-based access control (RBAC)
  • C. Access control list (ACL)
  • D. Rule-based access control
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by matt1976 at Sept. 8, 2022, 4:59 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
Nabs1
Highly Voted 2 years, 2 months ago
Selected Answer: D
D seems to be the correct answer. I dont think there is any such thing as limited role based access control.
upvoted 14 times
oudmaster
1 year, 11 months ago
There is (CISSP All-In-One Exam Guide): • Non-RBAC Users are mapped directly to applications and no roles are used. • Limited RBAC Users are mapped to multiple roles and mapped directly to other types of applications that do not have role-based access functionality. • Hybrid RBAC Users are mapped to multiapplication roles with only selected rights assigned to those roles. • Full RBAC Users are mapped to enterprise roles. ! But I don't think it is the answer for this question.
upvoted 1 times
...
jackdryan
1 year, 6 months ago
D is correct
upvoted 1 times
...
...
YesPlease
Most Recent 11 months, 1 week ago
Selected Answer: D
Answer D) Rule-based access control https://budibase.com/blog/app-building/difference-between-rule-based-role-based-access-control/#:~:text=What%20is%20rule%2Dbased%20access%20control%3F
upvoted 1 times
...
Soleandheel
11 months, 2 weeks ago
D. Rule-based access control Rule-based access control allows you to define specific rules or conditions that determine when and under what circumstances a user is granted access to a resource. In this case, the rule would be based on time and day restrictions (e.g., 9:00 a.m. to 5:00 p.m., Monday through Friday) for accessing the file "Financial Forecast." Rule-based access control provides the flexibility to enforce access policies based on various conditions or criteria.
upvoted 1 times
...
BoyBastos
1 year, 2 months ago
Selected Answer: D
D. Rule-based access control Rule-based access control (RBAC) uses specific rules that dictate who can access a resource and under what circumstances. In the scenario described, the access to the "Financial Forecast" file is contingent upon a specific time frame (9:00 a.m. to 5:00 p.m.) and specific days (Monday through Friday). This type of conditional access is best managed using rule-based access control.
upvoted 1 times
...
Dee83
1 year, 10 months ago
D. Rule-based access control.
upvoted 1 times
...
Cessar
1 year, 10 months ago
Selected Answer: D
Page 774 CISSP all in one 9th edition
upvoted 1 times
...
oudmaster
1 year, 11 months ago
Selected Answer: D
I vote for D
upvoted 1 times
...
BP_lobster
1 year, 12 months ago
Selected Answer: B
Given answer of Limited Role-BAC is correct. As this applies to a specific user (i.e. is NOT applying global rules to all subjects... Remember that CISSP definition of Rule-Based Access Control is applying global rules to all subjects). Source: CISSP Study guide 9th ed. page 682.
upvoted 3 times
Danny168
1 year, 5 months ago
Don't think it is Rule-based, because a rule is global to all subjects here, like a firewall rule. If this one is true, then this rule applies to all users and not just this user. I didn't know limited RBAC existed, untill I saw this https://books.google.nl/books?id=9gCn86CmsNQC&pg=PA121&lpg=PA121&dq=limited+RBAC&source=bl&ots=rjGtYpQR5H&sig=ACfU3U29lpqfWMCAjMhgP_G4KX4UIgpc-w&hl=nl&sa=X&ved=2ahUKEwio4uSw49b_AhWrNOwKHUrkCGAQ6AF6BAgkEAM#v=onepage&q=limited%20RBAC&f=false So out of the four answers I would choose B
upvoted 1 times
...
...
bynd
2 years ago
Selected Answer: D
limited role-based access control allows user access and assigns roles via authorized apps and assigned role within the app. There in the diagram, you see Bob, our subject, accessing applications one, two or three, and given his access to application one, by doing that, he is therefore assigned role A within application one. https://cloudacademy.com/course/cissp-domain-5-module-3/implementing-and-managing-authorization-mechanisms/
upvoted 1 times
bynd
2 years ago
I chose the wrong option. The explanation is for option B. Limited RBAC
upvoted 3 times
...
...
Skinbaggy
2 years ago
https://books.google.co.uk/books?id=LnjxBwAAQBAJ&pg=PT1134&lpg=PT1134&dq=A+user+is+allowed+to+access+the+file+labeled+%22Financial+Forecast,%22+but+only+between+9:00+a.m.+and+5:00+p.m.,+Monday+through+Friday.+Which+type+of+access+mechanism+should+be+used+to+accomplish+this?&source=bl&ots=V0JIX8fr2t&sig=ACfU3U1QyJ8i1mxmhobkLJYQO0nYeF6x7w&hl=en&sa=X&ved=2ahUKEwjfuYv_-qL7AhUaQEEAHe3dBykQ6AF6BAgHEAM#v=onepage&q&f=false Looks like B
upvoted 1 times
Skinbaggy
2 years ago
Sorry D
upvoted 1 times
...
...
johnywolker
2 years, 1 month ago
Selected Answer: D
clearly D
upvoted 2 times
...
brb77
2 years, 1 month ago
D. technically it s ABAC, subset of ruleBAC.
upvoted 4 times
...
matt1976
2 years, 2 months ago
Answer is B. a rule-based access control setting, an administrator might set access hours for the regular business day. In this instance, a person cannot gain entry into your building outside the hours of 9 a.m – 5 p.m
upvoted 1 times
matt1976
2 years, 2 months ago
I meant the answer is C. a rule-based access control setting, an administrator might set access hours for the regular business day. In this instance, a person cannot gain entry into your building outside the hours of 9 a.m – 5 p.m
upvoted 1 times
matt1976
2 years, 2 months ago
Very sorry. I meant D LOL. Its been a long day
upvoted 7 times
...
...
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel