Which of the following is a BEST practice when dealing …

Which of the following is a BEST practice when dealing with user accounts that will only need to be active for a limited time period?

Which of the following is a BEST practice when dealing with user accounts that will only need to be active for a limited time period?

A.
When creating the account, set the account to not remember password history.

B.
When creating the account, set an expiration date on the account.

C.
When creating the account, set a password expiration date on the account.

D.
When creating the account, set the account to have time of day restrictions.

Explanation:
Disablement is a secure feature to employ on user accounts for temporary workers, interns, or consultants. It automatically disables a user account or causes the
account to expire at a specific time and on a specific day.
Incorrect Answers:
A: Disabling password history will allow password reuse. The account will remain active.
C: Password expiration compels users to change passwords after a specified period. The account will remain active.
D: Time of day restrictions limit when users can access specific systems based on the time of day or week. The account will remain active.

Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp 280, 292, 293.



Leave a Reply 0

Your email address will not be published. Required fields are marked *