Role-Based Access Control (RBAC) allows users to access exactly what they need in order to do the activities defined by their role and eliminates the unnecessary security risks associated with giving a user more privilege than necessary.
RBAC is an identity management approach used to reduce manual access distribution across the enterprise and help to enforce the least privilege access required to perform job duties.
RBAC models leverage identity attributes to define role membership such as job function, locations, cost centers, etc., to mine and define roles. Automated access changes are initiated based on role membership changes. RBAC helps organizations to enable simplified access management, access certifications, and audit reporting across the enterprise.