Tech moves fast! Stay ahead of the curve with Techopedia!
Join nearly 200,000 subscribers who receive actionable tech insights from Techopedia.
Role-based access control (RBAC) is a method of access security that is based on a person’s role within a business. Role-based access control is a way to provide security because it only allows employees to access information they need to do their jobs, while preventing them from accessing additional information that is not relevant to them. An employee's role determines the permissions he or she is granted and ensures that lower level employees are not able to access sensitive information or perform high-level tasks.
In RBAC, there are three rules:
All access is controlled through roles that people are given, which is a set of permissions. An employee's role determines what permissions he or she is granted. For example, a CEO will be given the role of CEO and have any permissions associated with that role, while network administrators will be given the role of network administrator and will have all the permissions associated with that role.