RBAC vs IAM: what's the difference and how do they work together?

RBAC (Role-Based Access Control) and IAM (Identity and Access Management) are integral components of securing IT environments. While RBAC is a specific access control method under the IAM umbrella, primarily concerned with assigning and managing permissions according to user roles, IAM encompasses a comprehensive framework for handling identity verification, access rights, and user lifecycle management within an organization. Often, organizations use an IAM system that includes RBAC as part of its functionality. Other methods for enabling access control include Attribute-Based Access Control (ABAC), Relationship-Based Access Control (ReBAC), Discretionary Access Control (DAC), Access Control Lists (ACLs), and Mandatory Access Control (MAC).