CompTIA Server+ (SK0-005) — Question 317

Which of the following policies would be BEST to deter a brute-force login attack?

Answer options

• A. Password complexity
• B. Password reuse
• C. Account age threshold
• D. Account lockout threshold

Correct answer: D

Explanation

The correct answer is D, as setting an account lockout threshold will temporarily disable an account after a certain number of failed login attempts, thus preventing further brute-force attempts. Options A (Password complexity) and B (Password reuse) focus on password strength and management but do not directly prevent repeated login attempts. Option C (Account age threshold) does not address login attempts at all.