In order to grant permission to a user, does an admin need to possess that permission?

The statement is true because, in many systems and frameworks, administrators typically must have the required permissions to grant those permissions to users. This principle is rooted in the concept of the "least privilege," which is a critical security practice. By ensuring that only users with the necessary permissions can grant those permissions, it helps to prevent unauthorized access and misuse of rights within a system. This approach minimizes risks, as it ensures that only qualified personnel can make changes that could affect the security and integrity of the system.

In some environments, the necessity for admins to have certain permissions isn't universally applied, which is what the other options may suggest. For example, permissions being limited or temporary could imply exceptions to this rule, but fundamentally, granting permissions typically requires the administrator to have those permissions as a safeguard against errors and abuse.