Question: Testing Password and Account Lockout Settings Time Required: 1 hour or longer, unless some times are modified to decrease the amount of waiting time Objective: Test the password and account lockout policy settings you configured. Required Tools and Equipment: Net-XX Description: Whenever configuration changes are made that affect a system's security, they should be tested thoroughly. Review the password and account lockout policies you set in Hands-On Project 9-1, and devise a method to test these policies to be sure they have the effect you wanted. For each password policy and account lockout policy setting, write a short description of how you plan to test the setting, and then follow your testing instructions to verify that the instructions are correct and the settings are working as intended. You can use the following lines to write the testing instructions or create a document to give to your instructor. Password policy settings:
• Users must use 10 different passwords before reusing a password.
• Users must change their passwords every 30 days.
• Users can't change their password more often than every 7 days.
• The minimum password length is six characters.
• The password must contain three of these characteristics: uppercase letters, lowercase letters, numbers, or special characters. Account lockout policy settings:
• User accounts are locked out after four invalid logon attempts.
• Locked accounts are unlocked automatically after 60 minutes.
• The counter is reset 15 minutes after each invalid logon attempt.