What type of access control allows administrators to assign roles and permissions based on the roles assigned?

Role-Based Access Control (RBAC) is a system of access control where permissions are assigned to users based on the roles they hold within an organization. This model simplifies the management of permissions by allowing administrators to define roles based on job functions, capturing the necessary access needs for each role.

In this approach, users are assigned to specific roles, and each role has a set of permissions that specify what resources and actions users in that role can access or perform. For example, an employee in a "Manager" role might have access to view and modify sensitive documents, while someone in a "Staff" role might only have permission to view those documents without making changes.

RBAC enhances organizational security by ensuring that users have the minimum necessary access rights to perform their job functions, thereby reducing the risk of accidental or malicious misuse of data. It also makes it easier to manage and revoke access. When employees change roles, their access can be adjusted accordingly without needing to update individual permissions extensively.

The other options, while related to access and security, do not specifically refer to the role-assigning feature. Privilege Management focuses more on the oversight and control of individual privileges rather than roles. Mandatory Access Control (MAC) is a strict model where access is determined based