Least Privilege
Least privilege means giving only the minimum permissions needed to do a task.
Updated: 2026-03-05
Definition
Least privilege reduces risk by limiting user and service permissions to only what is necessary.
It minimizes the blast radius if an account is compromised or a mistake happens.
Key points
- Limit access scope and duration
- Prefer role-based permissions
- Review and remove unused permissions
Common mistakes
- Keeping temporary admin permissions permanently.
- Not separating duties for sensitive actions.
Related exams
CompTIA Security+ (SY0-701)
Free Security+ SY0-701 mini test. Continue in the app for offline packs and detailed explanations.
Microsoft Azure Fundamentals (AZ-900)
Free AZ-900 mini test. Continue in the app for offline packs and detailed explanations.
AWS Certified Solutions Architect – Associate (SAA-C03)
Free SAA-C03 mini test. Continue in the app for offline packs and detailed explanations.
Related terms
Want to practice this in exam-style questions?
Use the mini tests on each exam page, then continue in the app for offline packs and detailed explanations.
Go to exams