What is Least Privilege?
Least privilege is an IAM concept used to ensure that users, programs, processes, and systems have the bare minimum level of access or permission they need to perform their role or function.
What can we use Least Privilege for?
Least privilege is often used as part of an IAM or security management strategy and is based on roles, jobs, functions, or other factors such as location. E.g., Applying specific privileges to business departments like human resources, IT, and marketing based on roles and needs. Or restricting access to high-value systems and data by time of day to prevent unauthorized access. The purpose of least privilege is to enhance security posture for the organization, allowing accounts/users/identities to have only the rights or entitlements absolutely necessary. It is a key concept for emerging security approaches like Zero Trust Architecture.