Which concept might require users to use a second access token or to re-enter passwords to gain elevated access rights in the identity and access provisioning life cycle?

A. Time-based
B. Enrollment
C. Least privilege
D. Access review