An administrator notices that former temporary employees’ accounts are still active on a domain.
Which of the following can be implemented to increase security and prevent this from happening?
Implement a password expiration policy.
Implement an account expiration date for permanent employees.
Implement time of day restrictions for all temporary employees.
Run a last logon script to look for inactive accounts.
You can run a script to return a list of all accounts that haven’t been used for a number of days, for example 30
days. If an account hasn’t been logged into for 30 days, it’s a safe bet that the user the account belonged to is
no longer with the company. You can then disable all the accounts that the script returns. A disabled account
cannot be used to log in to a system. This is a good security measure. As soon as an employee leaves the
company, the employees account should always be disabled.