In which access control policy is an entity unable to enable another entity to access resources?

Mandatory Access Control (MAC): In MAC, access to resources is controlled by a central authority, and individuals or entities do not have the discretion to grant access to other entities. The system enforces policies, often based on security labels, and only authorized entities (determined by the system) can access the resources. Users cannot make changes to these permissions themselves. Discretionary Access Control (DAC): In DAC, the owner of the resource (or an entity with the appropriate permissions) has control over who can access the resource and can delegate that access to other users. This gives users more flexibility compared to MAC. Role-Based Access Control (RBAC): In RBAC, access is based on the roles assigned to users. A user cannot directly grant access to others unless they are authorized to assign roles. The system administrator controls role assignments and the permissions associated with each role.