CompTIA Security Plus Mock Test Q962

A system administrator has noticed that users change their password many times to cycle back to the original password when their passwords expire. Which of the following would BEST prevent this behavior?

A. Assign users passwords based upon job role.
B. Enforce a minimum password age policy.
C. Prevent users from choosing their own passwords.
D. Increase the password expiration time frame.

Correct Answer: B
Section: Access Control and Identity Management

Explanation:
A minimum password age policy defines the period that a password must be used for before it can be changed.

Incorrect Answers:
A: Assigning users passwords based upon job role is not a secure password solution.
C: Preventing users from choosing their own passwords could make remembering passwords difficult. This could lead to a user having to record a generated password somewhere
that is not secure.
D: This will cause a password to be retained for a longer period.

References:
https://technet.microsoft.com/en-us/library/cc779758(v=ws.10).aspx
Stewart, James Michael, CompTIA Security+ Review Guide, Sybex, Indianapolis, 2014, pp. 291-293