ITIL · Question #203
Which of the following BEST describes the purpose of access management?
The correct answer is B. Provides the rights for users to be able to use a service or group of services. Access management in ITIL governs who is authorized to use IT services by granting or restricting rights based on defined policies.
Question
Which of the following BEST describes the purpose of access management?
Options
- ATo provide a channel for users to request and receive standard services
- BProvides the rights for users to be able to use a service or group of services
- CTo prevent problems and resulting Incidents from happening
- DTo detect security events and make sense of them
How the community answered
(45 responses)- A7% (3)
- B89% (40)
- C2% (1)
- D2% (1)
Why each option
Access management in ITIL governs who is authorized to use IT services by granting or restricting rights based on defined policies.
Providing a channel for users to request and receive standard services describes the Request Fulfillment process, not access management.
Access management is the process responsible for granting authorized users the right to use a service while preventing access by non-authorized users, as defined in ITIL Service Operation. It implements the policies set by information security management and manages user access rights throughout the identity lifecycle.
Preventing problems and resulting incidents from occurring is the purpose of Problem Management, which focuses on root cause analysis and error control.
Detecting security events and making sense of them describes security event monitoring or a SIEM solution, which is outside the defined scope of the ITIL access management process.
Concept tested: ITIL access management purpose and scope
Source: https://www.axelos.com/certifications/itil-service-management/itil-4-foundation
Topics
Community Discussion
No community discussion yet for this question.