Company policy requires employees to change their passwords every 60 days. The security
manager has verified all systems are configured to expire passwords after 60 days. Despite the
policy and technical configuration, weekly password audits suggest that some employees have
had the same weak passwords in place longer than 60 days. Which of the following password
parameters is MOST likely misconfigured?
A.
Minimum lifetime
B.
Complexity
C.
Length
D.
Maximum lifetime
i guess this should be ‘D’ because they have the same password for more than 60 days ( when it should have been changed ). The word “weak” makes me think of complexity, but “longer than 60 days” says that they did not change their password for more than 60 days, so the “Maximum lifetime” of the password is misconfigured.
0
0
Maximum lifetime
Maximum number of days that a password can exist before the user must change it.
0
0
Actually, I’m pretty sure it would be minimum lifetime, that way you can’t just keep cycling through passwords until you can use your old one again.
1
1