Password Policies

Introduction

Welcome to the Password Policies Practice Lab. In this module, you will be provided with the instructions and devices needed to develop your hands-on skills.

Learning Outcomes

In this module, you will complete the following exercises:

• Exercise 1. Configure Local Password Policy
• Exercise 2. Enforce Domain Password Policy

After completing this lab, you will be able to:

• Remove a Windows computer form a domain
• Modify local security policy
• Create a local user for testing local password policy
• Allow log on via remote desktop
• Verify local password and security policy
• Modify domain security policy
• Verify domain security policy
• Unlock the user account

Exam Objectives

The following exam objectives are covered in this lab:

• 6.2 Methods to secure devices and best practices.
• 6.5 Password best practices.

Lab Duration

It will take approximately 1 hour to complete this lab.

Exercise 1 - Configure Local Password Policy

In this exercise, you will create a local policy for a standalone Windows computer.

Learning Outcomes

After completing this exercise, you will be able to:

• Remove a Windows computer form a domain
• Modify local security policy
• Create a local user for testing local password policy
• Allow log on via remote desktop
• Verify local password and security policy

Exercise 2 - Enforce Domain Password Policy

Corporate networks use one domain password policy that applies to all users who sign-in to the Windows Active Directory domain. Domain password policy is similar to local password policy. However, there are additional policies for Kerberos—the authentication protocol used by Windows servers running Active Directory Domain Services.

For this exercise, you will manage the default domain policy that is included in Windows Server when it is configured to run the Active Directory Domain Services role.

Learning Outcomes

After completing this exercise, you will be able to:

• Use Group Policies to enforce password policies