Which of the following controls access to certain services to ensure that administrators are not automatically given elevated permissions?

Multi-Factor Authentication (MFA) enhances security by requiring two or more verification methods for user access. While MFA improves the security of login processes, it does not specifically control or restrict elevated permissions for administrators. Its primary function is to verify user identity, rather than managing access levels.

Data Loss Prevention (DLP) focuses on protecting sensitive data from unauthorized access and transmission. While DLP is essential for data security, it does not address the management of user permissions or the control of administrative access. Its role is more about safeguarding data rather than controlling user privileges.

Single Sign-On (SSO) simplifies user authentication by allowing access to multiple applications with one set of credentials. However, it does not manage or restrict elevated permissions for administrators. SSO primarily streamlines the user experience rather than providing granular control over access rights.