Overview

Introduction

Welcome to the Password Policies Practice Lab. In this module, you will be provided with the instructions and devices needed to develop your hands-on skills

Learning Outcomes

In this module, you will complete the following exercises:

  • Exercise 1 - Configure Local Password Policy
  • Exercise 2 - Enforce Domain Password Policy

After completing this lab, you will be able to:

  • Understand password complexity, password length, password history, the interval between password changes, password resets, protect domain user account password
  • Use Group Policies to enforce password policies

Exam Objectives

The following exam objectives are covered in this lab:

  • Understand password policies - Password complexity; account lockout; password length; password history; the time between password changes; enforce by using Group Policies; common attack methods; password reset procedures; protect domain user account passwords

Lab Duration

It will take approximately 30 minutes to complete this lab.

Exercise 1 - Configure Local Password Policy

Password policies are mandatory to secure user sign-ins to a computer network and protect its corporate assets. A restrictive security policy provides a layer of defense from intruders who wish to log on using either a compromised user credential or password cracking utilities to gain access to information.

A password policy is configured based on the requirements of an organization. It can include such parameters like minimum password length, password history, password complexity, minimum and maximum password age. In addition, a policy can include account lockout to fend off malicious users who may have discovered a corporate account then attempt to log on by masquerading as a legitimate user and enter random passwords.

In this exercise, you will create a local policy for a standalone Windows computer.

Learning Outcomes

After completing this exercise, you will be able to:

  • Understand password complexity, password length, password history, the interval between password changes, password resets, protect domain user account password

Exercise 2 - Enforce Domain Password Policy

Corporate networks use one domain password policy that applies to all users who sign-in to the Windows Active Directory domain. Domain password policy is similar to local password policy. However, there are additional policies for Kerberos—the authentication protocol used by Windows servers running Active Directory Domain Services.

For this exercise, you will manage the default domain policy that is included in Windows Server when it is configured to run the Active Directory Domain Services role.

Learning Outcomes

After completing this exercise, you will be able to:

  • Use Group Policies to enforce password policies"

Comprehensive Learning

See the full benefits of our immersive learning experience with interactive courses and guided career paths.