"In this video, John Martinez shows you how to forbid access to the database to users who are not in the approved role. 👉 What exactly does this policy do? This policy explicitly forbids access to a database with PII data unless the user is in a pre-approved role. This is also an example of implementing RBAC in a fine-grained authorization policy. 👉 Why it matters PII data is a target of almost all attacks that result in ransomware, with subsequent loss of brand value and leaking of sensitive data for identity theft."
This policy for bids access to a PII database, unless the user is in the PII admin's role, I'm gonna go ahead and attempt the connection to the database.
I'm forbidden from accessing the database.
I will now add the user to the correct role.
User's been added. Let's retet the connection and we are now in the database.
