next up previous
Next: Admin Roles Up: Specification Previous: Standard Administration

Separation of Administration Duty

Security administration should best be separated into several tasks, performed by several different administrators, which have to cooperate to provide additional privileges.

The Role Compatibility Model contains a separation of administration duty scheme, which allows to generate limited workgroups as well as enforce cooperation of two or more roles for most administration tasks. However, the Admin Type role attribute makes the separation scheme completely optional.

As the separation of duty related settings can only be changed by roles with Admin Type set to Role Admin, removing these roles or resetting their Admin Type value fixes the separation for future use.


Amon Ott