Which IAM concept ensures that elevated privileges are granted only when needed and automatically revoked?
A CISSP practice question covering Domain 5: Identity and Access Management (IAM). Try answering before reading the explanation below.
Show options & answer
Why "Just-in-Time (JIT) access" is the right answer
JIT issues time-bound elevation upon approved request, dramatically reducing standing privilege exposure. Permanent rights and shared accounts increase risk. Role consolidation reduces sprawl but doesn't address the privilege duration.
Study videos for this topic
Want to go deeper on Domain 5? Watch the full breakdown — every video is free, no account, no upsell.
CISSP Domain 5: Authentication, MFA & Passkeys
Domain 5 — Identity and Access Management (IAM)
CISSP Domain 5: SSO, SAML, OAuth, OIDC & Kerberos
Domain 5 — Identity and Access Management (IAM)
CISSP Domain 5: DAC, MAC, RBAC, ABAC Explained
Domain 5 — Identity and Access Management (IAM)
CISSP Domain 5: Identity Lifecycle & PAM Explained
Domain 5 — Identity and Access Management (IAM)
Take the full CISSP practice test
120 questions, instant explanations, study-video links on every miss. No account.