Exam (elaborations)

WGU C845 VUN1 Task 1| Passed on First Attempt |Latest Update with Complete Solution

Rating

Sold

Pages

Grade

A+

Uploaded on

15-01-2026

Written in

2025/2026

Show more Read less

Institution

Course

Whoops! We can’t load your doc right now. Try again or contact support.

Report Copyright Violation

Written for

Institution: Western Governors University
Course: WGU C845 (WGUC845)

All documents for this subject (67)

Document information

Uploaded on: January 15, 2026
Number of pages: 6
Written in: 2025/2026
Type: Exam (elaborations)
Contains: Questions & answers

Subjects

wgu c845
wgu c845 vun1 task 1
western governors university course wgu c845
wgu c845 vun1 task 1 passed on first attempt lat

Content preview

WGU C845 VUN1Task 1 | Passed on FirstAttempt ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

|Latest Update with Complete Solution
,x. ,x. ,x. ,x. ,x.

VUN1 — VUN1 Task 1: Managing Security Operations and Access Controls
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

Information Systems Security - C845
,x. ,x. ,x. ,x. ,x.

A. Apply an Access Control Model ,x. ,x. ,x. ,x.

A.1. Chosen Access Control Model ,x . ,x. , x.

Ihavechosen the Role-BasedAccess Control (RBAC)model.Theprinciples ofRBAC are:
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

• Role Assignment: A user is assigned to a role based on their job function (e.g., "Finance
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

Analyst").
,x.

• Permission Assignment:Permissionstoperformoperations onsystemsareassignedto roles, not
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

to individual users.
,x. ,x. ,x.

• Session Management: Auser activates a role to gainthe associated permissionsfor a session.
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

• Least Privilege: Users should only have the minimum level of access necessary toperform their job
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

duties.
,x.

The organization's access control structure, as seen in the user matrix, is implicitly role-based (e.g.,
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

"Financemanager," "HRcoordinator"). Applyinga formalRBACmodelwouldstreamlinethisbyensuring
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

permissions are strictly tied to business functions, reducing complexity and the potential for user error
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

when assigning permissions.
,x. ,x. ,x.

A.2. Four Misalignments with RBAC Principles , x . , x . , x . , x .

1. Misalignment 1: Privilege Escalation Beyond Role Scope ,x. ,x. ,x. ,x. ,x. ,x.

• Description: The "Juniorsystem admin" (J.Lopez) has"Domainadmin" privileges.A ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

junior role should not have the highest level of access in a Windows environment.
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

• Conflict with RBAC: Thisviolates the principle of least privilege. The role "Junior system ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

admin"implies asubsetofadministrativeduties,not unrestricteddomain-widecontrol.
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

2. Misalignment 2: Unnecessary Access Across Departments ,x. ,x. ,x. ,x. ,x.

• Description: The "Finance analyst" (L. Cheng) has "Full access" to the CRM, a system ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

, primarily for Sales and Support. A finance role typically does not require full modification
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

rights in a customer relationship system.
,x. ,x. ,x. ,x. ,x. ,x.

• Conflict with RBAC: This violates least privilege and separation of duties. It allows for
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

potential data manipulation outside the user's core business function.
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

3. Misalignment 3: Violation of User-Role Assignment Post-Termination
,x. ,x. ,x. ,x. ,x. ,x.

• Description: The "HR assistant" (P. Ellis), who was terminated on 2025-05-20, has an
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

"Active" account status and successfully logged in on 2025-06-29.
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

• Conflict with RBAC: RBAC requires timely revocation of role assignments upon a change in
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

employment status. An active session for a terminated user completely bypasses the
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

security provided by the role structure.
,x. ,x. ,x. ,x. ,x. ,x.

4. Misalignment 4: Overly Broad Privileged Access
,x. ,x. ,x . ,x. ,x.

• Description: The "IT administrator" (T. Miller) has "Full admin" access to "All internal
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

systems," and the log shows they made a firewall rule change without a ticket_id.
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

• ConflictwithRBAC:Whilesomeaccessisnecessary,blanket"Fulladmin" access
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

violates least privilege and impedes accountability. It does not segment duties within the IT
,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x. ,x.

department itself.
,x. ,x.

$18.49

Get access to the full document:

100% satisfaction guarantee

Immediately available after payment

Both online and in PDF

No strings attached

Get to know the seller

Wisdomstudys

Also available in package deal

Get to know the seller

Wisdomstudys Howard Community College

View profile

Sold

Member since

3 months

Number of followers

Documents

251

Last sold

Wisdomstudys

0.0

0 reviews

Why students choose Stuvia

Created by fellow students, verified by reviews

Quality you can trust: written by students who passed their tests and reviewed by others who've used these notes.

Didn't get what you expected? Choose another document

No worries! You can instantly pick a different document that better fits what you're looking for.

Pay as you like, start learning right away

No subscription, no commitments. Pay the way you're used to via credit card and download your PDF document instantly.

“Bought, downloaded, and aced it. It really can be that simple.”

Alisha Student

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller Wisdomstudys. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $18.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews) 47402 documents were sold in the last 30 days Founded in 2010, the go-to place to buy study notes for 16 years now

WGU C845 VUN1 Task 1| Passed on First Attempt |Latest Update with Complete Solution

Written for

Document information

Subjects

Content preview

Also available in package deal

Get to know the seller

Recently viewed by you

Why students choose Stuvia

Created by fellow students, verified by reviews

Didn't get what you expected? Choose another document

Pay as you like, start learning right away

Frequently asked questions

What do I get when I buy this document?

Satisfaction guarantee: how does it work?

Who am I buying these notes from?

Will I be stuck with a subscription?

Can Stuvia be trusted?