Microsoft MCITP Test Prep - Windows Server 2008

Category - MCITP Free Practice Test Question

You are the network administrator for abc.com. The network consists of a single Active Directory domain called abc.com. All domain controllers run Windows Server 2008. The security policy states that users who enter an invalid password more than twice in one day must be locked out. You need to configure domain account policy settings to enforce this rule. Which of the following is one of the two actions that you should perform?
  1. Set the minimum password age to one day.
  2. Change the Enforce password history setting to three passwords remembered.
  3. Change the Account lockout duration setting to 1440 minutes.
  4. Change the Account lockout threshold setting to three invalid logon attempts.
Explanation
Answer - D - You should change the Change the Account lockout threshold setting to three invalid logon attempts.

Key Takeaway: The Account lockout threshold setting determines the number of failed logon attempts that locks a user account to be locked out. An account that is locked out should either be reset by an administrator, or the user should wait until the lockout duration for the account has expired.
Was this helpful? Upvote!
Login to contribute your own answer or details

Top questions

Related questions

Most popular on PracticeQuiz