Skip to content
Compliance Dungeon - Internal Copy
Welcome to the Compliance Dungeon
The Compliance Dungeon
About the Creator
Share
Explore

icon picker
Level 3 – Enclave of Access Control

Level 3 Progress:
🔹🔹🔹🔹🟦⬜⬜⬜⬜⬜

📖 Field Notes

🧙‍♀️ Journal Entry – Day 23: The Fortress and the Keys
Gates. Locks. Secrets.
This is no forest. No open field. No gentle learning ground.
As you leave the wide-open plains behind, the terrain shifts sharply. Rising from the earth like a warning, a sheer wall of stone and steel blocks the horizon. Sigils pulse across its face—biometric runes, multi-factor glyphs, access schedules forged in audit flame. The structure radiates purpose and paranoia in equal measure.
You’ve reached the Enclave of Access Control, a fortress of permissions and privilege. Here, trust is not assumed — it must be proven. Every door is a challenge. Every system, a test. The drawbridge does not lower for the unworthy.
Mistakes are costly in this place. One misconfigured role, one forgotten admin account, one lazy click — and the entire kingdom could fall. There are no second chances when the enemy walks through a door you left open.
Inside the Enclave, warden constructs patrol the halls, glowing with access logs from a hundred logins past. Ghost sessions shimmer faintly in side rooms — remnants of long-terminated employees who were never fully offboarded. You study the flow of permissions, of roles, of digital footprints. Every account tells a story. Every credential is a key. Some still turn in locks they shouldn't.
This is where I learned the ways of the IAM Ranger. The discipline of role-based access. The ceremony of provisioning. The quiet power in revoking what no longer serves.
It’s easy to over-permit. Tempting to trust too freely. But in this fortress, access is not a gift — it’s a liability until proven otherwise.
The Enclave does not forget. It records everything. And within its halls lies both safety… and the ever-present potential for betrayal.
“Every key you give shapes your kingdom. Choose poorly, and you’ll unlock your own ruin.”

🧠 Dungeon Purpose

The Enclave of Access Control is where identity, permissions, and access design are scrutinized and hardened.
This level focuses on:
Reviewing user access and privileged accounts
Implementing least privilege principles
Managing authentication methods (MFA, SSO, identity federation)
Conducting regular access reviews or re-certifications
Mapping role-based access control (RBAC)
Enforcing separation of duties and admin restrictions
If the Courtyard was about awareness, and the Plains about visibility, the Enclave is about control and verification. This is where the lines between outsider, insider, and elevated access are clearly drawn—and enforced.
In fantasy terms: you are building the castle keep and defining who gets the keys to the vault.

📜 Quest Log

Status
Quest Name
Description
Assigned Class
Assigned To
Completion Date
Complete?
Implement MFA for All Admin Accounts
Enchant all administrative accounts with multi-factor defenses. The stronger the spell, the harder it is for invaders to breach.
🎉 DONE! 🎉
Review User Roles & Permissions (RBAC)
Ensure each adventurer has only the powers they need. Too much access, and they may accidentally unleash data dragons.
🎉 DONE! 🎉
Create Access Control Policy
Define the sacred rules of access—who can enter which chamber, and what they may do within. No “Open All Doors” spell allowed.
Complete ✅
Establish Account Termination Process
Build a ritual for revoking access when heroes leave the party (aka employee offboarding). Prevent ghost accounts from lingering.
Complete ✅
Review Privileged Accounts & Add Alerts
Audit the kingdom’s highest-powered accounts and place magical tripwires to detect suspicious activity in real time.
Complete ✅
No results from filter

Want to print your doc?
This is not the way.
Try clicking the ⋯ next to your doc name or using a keyboard shortcut (
CtrlP
) instead.