An administrator notices that former temporary employees’ accounts are still active on a domain.
Which of the following can be implemented to increase security and prevent this from happening?
A.
Implement a password expiration policy.
B.
Implement an account expiration date for permanent employees.
C.
Implement time of day restrictions for all temporary employees.
D.
Run a last logon script to look for inactive accounts.
Explanation:
You can run a script to return a list of all accounts that haven’t been used for a number of days, for
example 30 days. If an account hasn’t been logged into for 30 days, it’s a safe bet that the user
the account belonged to is no longer with the company. You can then disable all the accounts that
the script returns. A disabled account cannot be used to log in to a system. This is a good security
measure. As soon as an employee leaves the company, the employees account should always be
disabled.
another stupid answer , there are so many other reasons why a account is not logged in for a long time for example vacations or sickness , one cannot disable accounts blindly by thinking that employees have left when they can be on vacations or sick , usually there is a concerned department to request these changes so why administrator because over smart and do all these things on his own specially when it not his job responsibility ?
0
0
Asir, it it also the administrators responsibility to ensure accounts of past employees are disabled. Upon finding an inactive account, the administrator would then look further to see the state of that employee. Besides, all the other choices are clearly irrelevant..
0
0
free bets
http://www.XquielQMVW.com/XquielQMVW
0
0