What type of security affects tenant-wide permission?

The type of security that affects tenant-wide permission is role-based security. In Workday, role-based security allows organizations to define roles that encompass specific sets of permissions and access control across the entire tenant. This means that when a user is assigned to a certain role, they inherit the permissions associated with that role, which can include access to sensitive financial data, reporting tools, and other critical functions within the Workday environment.

Role-based security is particularly effective in managing permissions on a tenant-wide basis because it simplifies the administration of user access. Instead of assigning permissions to individual users, which can become cumbersome, roles can be created and updated centrally. This allows for easier adjustments to security measures as organizational needs change, reducing the risk of human error and ensuring that security policies are consistent across all users fulfilling similar functions within the company.

In contrast, user-based security primarily deals with permissions at an individual level and may not provide holistic tenant-wide control. Group-based security typically governs a collection of users based on criteria like department or function, while location-based security restricts access based on geographic or organizational units. These methods may not provide the comprehensive, centralized management of permissions that role-based security does, making role-based security the most effective for tenant-wide permission management.