Best Practices for Privilege Elevation #43
Labels
Milestone
Comments
|
We will reach out to the authors about adding this to Intro to Identity - Part 1 in the section on Privileged Account Management. Make sure to include that "Privilege escalation" is a synonym. Note that some further information will also be added to Intro to Access Management. |
hlflanagan
added
refresh
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
This needs to be incorporated into the BoK, probably in one of the Intro to Identity articles:
Privilege elevation is a best practice that is used by operators and developers of identity systems to help achieve the principle of least privilege. People should only access high sensitivity resources like live customer data when there is a valid business reason like debugging an issue with the logs of live customer data. It is not appropriate to use elevated permissions when they are not necessary, when the person is merely curious, or to help a friend or family member.
The text was updated successfully, but these errors were encountered: