You implement a security policy that requires all user accounts to have strong passwords. It also states that a user account must be locked out after three consecutive failed logon attempts and only administrators must be able to unlock a locked out account. All users have been instructed to change their passwords to meet the new security policy. Which of the following should you do?
A)Set the Account lockout duration value to 3 and the Account lockout threshold value to 0.
B)Set the Account lockout duration value to 0 and the Account lockout threshold value to 3.
C)Set both the Account lockout duration value and the Account lockout threshold value to 0.
D)Set both the Account lockout duration value and the Account lockout threshold value to 3.

Question

Quizplus · Accepted Answer

You should set the Account lockout duration value to 0 and the Account lockout threshold value to 3.
Key Takeaway: The Account lockout duration determines the number of minutes a locked-out account remains locked out before automatically becoming unlocked. The available range is from 0 minutes through 99,999 minutes. The Account lockout threshold determines the number of failed logon attempts that will cause a user account to be locked out. A locked-out account cannot be used until it is reset by an administrator or the account lockout duration has expired.

You Implement a Security Policy That Requires All User Accounts