nerdexam
ExamsSY0-301Questions#137
CompTIA

SY0-301 · Question #137

SY0-301 Question #137: Real Exam Question with Answer & Explanation

The correct answer is A: A recent security breach in which passwords were cracked.. Forcing immediate password expiration company-wide is a reactive measure most consistent with responding to a security breach where passwords were compromised. No other listed option provides an urgent, breach-driven rationale for end-of-day expiration.

Question

Sara, a security manager, has decided to force expiration of all company passwords by the close of business day. Which of the following BEST supports this reasoning?

Options

  • AA recent security breach in which passwords were cracked.
  • BImplementation of configuration management processes.
  • CEnforcement of password complexity requirements.
  • DImplementation of account lockout procedures.

Explanation

Forcing immediate password expiration company-wide is a reactive measure most consistent with responding to a security breach where passwords were compromised. No other listed option provides an urgent, breach-driven rationale for end-of-day expiration.

Common mistakes.

  • B. Configuration management processes involve maintaining known-good system states and do not necessitate emergency password expiration across all accounts.
  • C. Password complexity requirements define the rules for creating passwords but do not by themselves trigger a need for immediate forced expiration of all existing passwords.
  • D. Account lockout procedures lock accounts after failed login attempts and are a preventive control, not a reason to expire all passwords immediately.

Concept tested. Incident response - forced password expiration after breach

Reference. https://learn.microsoft.com/en-us/entra/identity/authentication/concept-password-ban-bad

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full SY0-301 Practice