What are the different types of Policy Layers supported in an Access Control Policy?

The correct answer is A. Access Control Policy supports Ordered Layers and Inline Layers. Ordered Layers are evaluated as separate rulebase layers in a defined sequence. Inline Layers are sub-rulebases associated with a parent rule and evaluated only after that parent rule matches. Option B is incorrect because “Static” and “Updateable” are not official Access Control policy-layer types. Option C borrows concepts from global/exception policy design but does not identify the supported layer types in a standard Access Control Policy. Option D describes possible rule-content themes, not official policy-layer types. This distinction is heavily tested because layered policy design affects enforcement. A Drop in an Ordered Layer terminates processing, while an Accept can allow evaluation to proceed to later Ordered Layers. Inline Layers add conditional granularity under a matched parent rule. Reference topics: Access Control Policy, Ordered Layers, Inline Layers, layered enforcement.