Previous Topic: Define Task-Assessment Requirements

Next Topic: Define Implementation Requirements

Define Access Control Requirements

Access control requirements establish whether or not a role requires access to a resource, and if so, the type of access they require. Two roles that access the same resource may not require the same access to the resource.

For example, two groups of users might perform tasks in the same directory. Group A might use this resource to view and modify the resource, while Group B members would view the resource. Because each user group uses the resource in a different way, access rights would differ:

How this applies to policies:

Access rights are defined in rules.

To define access control requirements

  1. For each task, identify the type of access that is required to perform the associated task.
  2. Enter the access requirement in the Access column.


Copyright © 2010 CA. All rights reserved. Email CA about this topic