2V0-622 Question #508: Real Exam Question with Answer & Explanation

The correct answer is D: Maximum Lifetime. In vCenter SSO's Password Policy, 'Maximum Lifetime' defines the maximum number of days a password remains valid before the user is forced to change it. Setting Maximum Lifetime to 90 days means SSO-managed accounts (users in the vsphere.local domain) must reset their password ev

Section 1 – Configure and Administer vSphere 6.5 Security

Question

Which vCenter Single Sign-On policy would force an SSO user's password to change every 90 days?

Options

AMaximum Length
BUnlock time
CMaximum token renewal count
DMaximum Lifetime

Explanation

In vCenter SSO's Password Policy, 'Maximum Lifetime' defines the maximum number of days a password remains valid before the user is forced to change it. Setting Maximum Lifetime to 90 days means SSO-managed accounts (users in the vsphere.local domain) must reset their password every 90 days. The other options address different concerns: 'Maximum Length' caps how many characters a password may contain. 'Unlock Time' is an Account Lockout Policy setting that determines how long an account remains locked after too many failed login attempts (0 = administrator must manually unlock). 'Maximum Token Renewal Count' is a Token Policy setting that controls how many times an SSO security token can be renewed before the user must re-authenticate from scratch - it governs session token lifetime, not password expiration.

Topics

#SSO#password policy#vCenter Single Sign-On#password expiration

Community Discussion

No community discussion yet for this question.

Full 2V0-622 Practice