Login Registration
 
 
 
Submission Guidelines Recent Approved Articles Featured Articles
Submit Free Article
Home About Us Advertising GuideLines Do's & Don't T & C FAQ Contact us
  Home Computers & Technology Articles Certification Articles
 
HostJinni Promotions
Articles Category
Arts & Entertainment
Automotive
Business
Cancer
Careers
Communications
Computers & Technology
Finance
Food & Drink
Gaming
Health & Fitness
Home & Family
Home Based Business
Home Improvement
Insurance
Just for Women
Kids & Teens
Legal
News & Society
Online Business
Online Tickets
Pets
Real Estate
Reference and Education
Relationships
Self Improvement
Shopping
Sports & Recreation
Travel & Tourism
Writing
  Member Area
Author Login
Free Registration
Authors From Country
 
  Helpful Topics
How to Write Articles
Free Early Approval Tips
Why Article Submission
 
  Best of Webzine
Leader Board
Most Viewed Articles
Top Rated Articles
Archive
  WebZine Status
Total Articles -17085
Registered Authors - 2899
Featured Articles - 340
Articles added this
month - 302
 

Account Lockout Policy Design Guidelines

    -    
When designing the account lockout policy, follow these CCNA certification(http://certtopper) guidelines:Set account lockout duration to a few

minutes. This does prevent casual attacks, and
if auditing is set and properly reviewed, it can warn that an attack is underway. It also avoids the load on administrator time and the lost user

productivity if users who lock out of their accounts must wait for them to be reset by someone else.
Consider whether you have enough staff to attend to manually resetting accounts.Set account lockout threshold high. If users make a few mistakes, they will

not be locked. A good number is 25 because it's probably way beyond any number of
attempts a valid user will make before asking for his password to be reset. However, it will stop an intruder, who will need many more attempts than that.
Alternatives to Password-Based Authentication Because password-based authentication is subject to many human weaknesses, you must be aware of and ready to

recommend alternatives to password authentication. Many alternatives exist that provide the opportunity to require two factors: something the user must

possess and something the user must know. Alternatives consist of:Smart cards—Smart card support is built into Windows Server 2003- It replaces the
use of passwords with a plastic card and a personal identification number (PIN) and requires the implementation of certificate services. Smart card usage can

be configured to require logoff when removed—thus preventing it from being shared—and if users need the card elsewhere, they can ensure logoff when users

leave their computers. Smart cards can be used in remote scenarios as well. Smart cards can also provide the solution for when specific groups require

stronger authentication—smartcards can be used by administrators, while ordinary users continue to Microsoft exam(http://upcert) use passwords.

Biometrics—Biometric authentication systems use some part of the human body to prove that the individual requesting access is who he or she claims to be.

Facial or voice recognition, keyboard stroke analysis, fingerprints, retinal scans, hand geometry, and more are being successfully used.Tokens—RSA tokens,

which provide a changing number synchronized with a server, provide a solid alternative to passwords. Other token systems, store certificates on small

universal serial bus (USB) connectable devices.Alternatives to passwords can be used to strengthen authentication practices, but their cost must be weighed

against their benefits.
Practice: Designing a Strong Password and Account Policy
In this practice, you will design a strong password and account policy. Read the following scenario and then answer the question that follows. If you are

unable to answer the question, review the lesson materials and try the question again. You can find the answer to the question in the "Questions and Answers"

section at the end of this chapter.
Scenario
You are a security designer for Wingtip Toys. The company plans to implement a sep¬arate Windows Server 2003 domain for use by the research department. The

only indi¬viduals who will have access to resources in the domain are:
25 toy designers
35 research department support staff employees
members of the Enterprise Admins group
All computers in the research domain are either Windows Server 2003 or MCITP Enterprise Administrator(http://certtopper). It is crucial that the

information in the research domain be kept confidential.
 
Like this article..? Rate it here:  Votes | Average: 1 out of 5  Votes | Average: 2 out of 5  Votes | Average: 3 out of 5  Votes | Average: 4 out of 5  Votes | Average: 5 out of 5     0 votes, average: out of 5    
About Author
   
Articles Stats
  Published Date - September 15 2010
  Total Views - 112
  Total Votes - 0
  Average Rating - 0
  Comments - 0
  Miss. Liu Han
The MCSE exams has been designed for professionals who analyze the business requirements. The autor devote herself to research the problems and knowledge of MCSE Certification.If you have any questions about MCSE,you can comments on the article the autor publiced.
 
Particular Article
 
Author Article
  • The New Cisco CCIP and CCIE C&S Certifications
  • [2010-10-21 ]
    Cisco just announced a new career certification and CCIE path at SuperComm, the CCIP. Since the article from two months ago discussed Cisco certifications, we\'ll add to that by going over CCIP for this month\'s article. Read More...
  • MCTS 70-620 Answer to Question
  • [2010-10-06 ]
    The Windows Vista Upgrade Advisor works only with 32-bit versions of Windows XP and Windows Vista.Answer options A, B, and D are incorrect. Microsoft recommends running Windows Vista Upgrade Advisor to get the complete compatibility report. Read More...
  • What Do the A+ Exams Cover
  • [2010-10-06 ]
    The A Exams are based on a industry-wide analysis of what a computer technician with at least 6 months experience should know about repairing and servicing computers to be recognized as competent. Read More...
  • Microsoft operating system and applications
  • [2010-10-06 ]
    If you have used Windows Vista, you have seen and experienced User Account Control (UAC). So you will need to know how User Account Control protects your computer and you will need to know how to react to User Account Control prompts and if necessary, Read More...
  • Microsoft Exam 70-270 Windows XP Installation Tutorial
  • [2010-10-06 ]
    Explanation: You must check to confirm that your hardware satisfies the system requirements. Microsoft says the bare minimum configuration includes a 233 MHz processor; 64 MB of RAM Read More...
  • MCITP: Enterprise Desktop Support Technician 7
  • [2010-10-06 ]
    As noted above, 70-680 Exam counts towards the MCITP: Enterprise Administrator certification. However, we have experienced some system issues which have delayed the awarding of the MCITP: Enterprise Administrator certification based on the passing of 70-680 Read More...
  • Best study guide for MCSE 70-297
  • [2010-10-06 ]
    Generally speaking, the duration of 70-297 exams is approximately 120 minutes. But please remember that the time varies from one exam to another, but it will not exceed four hours under normal circumstances. Read More...
  • Taking the 70-620 TS: Windows Vista, Configuring Exam
  • [2010-09-30 ]
    As with an operating system, you should first start with how to install Windows Vista. Besides running the normal installation DVD, you also need to be familiar with how to install Windows Vista with answer files, Windows images, ImageX, and Sysprep. Read More...
  • How many papers in MCSE
  • [2010-09-30 ]
    As an alternative to the electives that are listed in the elective exams table, these Microsoft certifications may be substituted for an MCSE elective: MCSA on Microsoft Windows 2000, MCSE on Microsoft Windows 2000, MCSE on Microsoft Windows NT 4.0 Read More...
  • Is it hard to pass 70-291
  • [2010-09-30 ]
    I\'ve been studying like crazy for 70-291, and have taken a lot of practice questions on IT certification found from this site. I\'ve found most of the questions long, but straight-forward enough to get a majority of them correct. Read More...
  • What To Expect In 70-291 Exam
  • [2010-09-21 ]
    In this practice, you will configure secure dynamic registration, secure zone replication, and then use dnscmd to secure DNS. Complete the following exercises. Read More...
  • Cisco Career Certifications
  • [2010-09-21 ]
    There are no formal prerequisites for CCIE certification. Other professional certifications or training courses are not required. Instead, candidates must first pass a written qualification exam and Read More...
  • Test Preparation Tools
  • [2010-09-21 ]
    The Cisco Certified Internetwork Expert (CCIE) certification is accepted worldwide as the most prestigious networking certification in the industry. Network Engineers holding an active Cisco CCIE ce Read More...
  • What Is Microsoft 70-297 Certification Exam
  • [2010-09-21 ]
    Tips to pass Microsoft 70-297 Exam:Make use of practice exams, study guides, tutorials , selftest software, selftest engine to prepare yourself well before applying for this exam. Read More...
  • All about Windows 7, Configuring Examination or Exam 70-680
  • [2010-09-21 ]
    The following skills of an individual are tested in Exam 70-680:Installation, Upgradation and Migration to Windows 7.This Exam 70-680 measures individuals ability to accomplish Technical tasks. Read More...
     
     
      Submit Your Articles - Submit Quality Articles - Quality Articles Submission  
      WebZine Articles (webzinearticles.com) is a registered trademark. All Rights Reserved. 2011