9.5 Claim-Based Access Control

Claim-based access control (CBAC) is a form of authorization management implemented in Windows Server 2012 operating system and Windows Server 2012 R2 operating system. A claim is an attribute that makes an assertion about an entity with which it is associated. That entity can be a user, a device, or a resource.

For more information on claims and claim-based access control, see [MS-AZOD] section  and [MS-AZOD] section