nerdexam
CompTIA

SY0-301 · Question #747

A password history value of three means which of the following?

The correct answer is A. Three different passwords are used before one can be reused.. A password history value of three means the system remembers the last three passwords, preventing a user from reusing any of them until three unique passwords have been used.

Security operations

Question

A password history value of three means which of the following?

Options

  • AThree different passwords are used before one can be reused.
  • BA password cannot be reused once changed for three years.
  • CAfter three hours a password must be re-entered to continue.
  • DThe server stores passwords in the database for three days.

How the community answered

(21 responses)
  • A
    90% (19)
  • B
    5% (1)
  • C
    5% (1)

Why each option

A password history value of three means the system remembers the last three passwords, preventing a user from reusing any of them until three unique passwords have been used.

AThree different passwords are used before one can be reused.Correct

Password history enforcement stores a hash of previously used passwords; a value of three means the system retains the last three password hashes and rejects any new password that matches one of them, requiring three distinct passwords to be used before the original can be reused.

BA password cannot be reused once changed for three years.

Password history tracks the number of unique passwords used, not a time duration; time-based password restrictions are governed by maximum password age settings.

CAfter three hours a password must be re-entered to continue.

Session timeout or re-authentication intervals are separate policies unrelated to password history; password history only controls password reuse.

DThe server stores passwords in the database for three days.

Password history controls reuse prevention, not storage duration; passwords are stored as hashes in the policy database indefinitely up to the history count.

Concept tested: Password history policy and reuse prevention

Source: https://learn.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/enforce-password-history

Topics

#password history#password policy#account management

Community Discussion

No community discussion yet for this question.

Full SY0-301 Practice