The traditional approach to Authorization uses manual admin processes to grant access as needed. However, as Admin-Time authorization is typically based on predefined roles, this can lead to problems when people shift positions, as their roles no longer match their responsibilities.
This is where Run-Time Authorization can help. Run-Time Authorization allows decisions to be made only when needed and when the user is actually accessing an application and/or data.
If you're interested in learning more about Run-Time vs Admin-Time Authorization, check out this recorded webinar with Daniel Brudner.
Daniel discusses how Policy Based Access Control enables Run-Time Authorization and how it can be implemented in your organization.
He also speaks about: