2372 Server Admin. Chapter 18

1. What are examples of password policies? Select all that apply.

2. Why primarily are account lockout policies put into place?

3. What is the default setting for password history?

4. What is the default minimum password length in characters?

5. What setting can you give for account lockout duration that requires an administrator to manually unlock the account?

6. By default, who has read/write capability to the Default Domain Policy?

7. How should you assign Password Settings objects (PSOs) to users?

8. What is the primary advantage of using Group Policies in a domain environment?

9. What is the secpol.msc utility used for?

10. What does the minimum password age setting control?

11. Why should administrator passwords change more often than user passwords?

12. What is the range of password history settings?

13. What is an easy method of creating a strong password?

14. Why is a setting of 0 for maximum password age not a good idea? Check all that apply.

15. Account policies contain various subsets. Which of the following are legitimate subsets of account policies? Check all that apply.

16. By default, which of the following represents the maximum amount of time by which a computer's internal clock can be inaccurate yet still be able to use Kerberos authentication?