A security analyst is reviewing the password policy for a service account that is used for a critical network service. The password policy for this account is as follows:
Which of the following adjustments would be the MOST appropriate for the service account?
A. Disable account lockouts
B. Set the maximum password age to 15 days
C. Set the minimum password age to seven days
D. Increase password length to 18 characters
Provided answer is correct. Its not C because if you set password age to 7 it will be very hard to change password in case the legitimate user was lockout. The recommended setting for minimum password age is 1 day.
That is a lie! The answer is C and other sources mark c as the correct answer as well!
Agreed with the other comment the answer should be C because they could just recreate the password three times just to get back to the original password.
The answer is C since password history is useless if minimum password age is not implemented.
why not C?