A framework of policies and guidelines, which allows the right users to access the right resources at the right time, and for legitimate and valid reasons. It ensures security across heterogeneous environments by preventing unauthorized access to organizations’ networks.