CompTIA Server+ (SK0-005) — Question 184

A server administrator has been asked to implement a password policy that will help mitigate the chance of a successful brute-force attack. Which of the following password policies should the administrator implement first?

Answer options

• A. Lockout
• B. Length
• C. Complexity
• D. Minimum age

Correct answer: A

Explanation

The correct answer is A, as implementing a lockout policy will temporarily disable accounts after a certain number of failed login attempts, effectively preventing brute-force attacks. While password length, complexity, and minimum age are important, they do not provide immediate defense against such attacks like account lockouts do.