Attribute-Based Access Control (ABAC) varies slightly from Role-Based Access Control (RBAC). RBAC provides user access to resources, based on Role assignment, where ABAC provides user access to resources, based on resource attributes and user attributes.
However IDHub can accommodate both simultaneously.
Attributes can include name, email, location, operating system, time of day, network, security clearance, or device type.
This added layer of security allows systems to have more granular control over its users, and protect against outsiders using a compromised user account maliciously.
IDHub includes many out-of-the-box schema attributes. Any custom attribute can be created and added to the schema.