CompTIA CySA+ (CS0-001) — Question 240

A user received an invalid password response when trying to change the password. Which of the following policies could explain why the password is invalid?

Answer options

• A. Access control policy
• B. Account management policy
• C. Password policy
• D. Data ownership policy

Correct answer: C

Explanation

The correct answer is C, the Password policy, as it specifically governs the requirements for creating and changing passwords, including complexity and length. Options A, B, and D do not directly address the rules surrounding password creation, hence they do not explain the invalid password response.