An organization is implementing a password management application which requires that all local
administrator passwords be stored and automatically managed. Auditors will be responsible for
monitoring activities in the application by reviewing the logs. Which of the following security
controls is the BEST option to prevent auditors from accessing or modifying passwords in the
application?

A.
Time of day restrictions

B.
Create user accounts for the auditors and assign read-only access

C.
Mandatory access control

D.
Role-based access with read-only