220-1102 Practice Question: A company's password policy requires a minimum…

Answer choices

Why each option matters

Good practice is not just finding the correct option. The wrong answers often show the exact trap the exam wants you to fall into.

Answer analysis

Why the other options are wrong

Understanding why incorrect options are tempting is as important as knowing the correct answer.

• ✗

  Require the use of a password manager and enable single sign-on for all applications.

  Password managers help, but users still need a strong master password; this does not directly address password memorization for every login.

• ✗

  Reduce the minimum password length to 8 characters while enforcing standard complexity requirements.

  Shortening the length reduces security against brute-force attacks.

• ✗

  Replace passwords with biometric authentication, such as fingerprint or facial recognition.

  Biometrics can be used as a factor but are not a complete replacement for passwords in most corporate environments.

Technical deep dive

How to think about this question

The core issue presented is a conflict between strong password policy (14+ characters with complexity) and user usability, leading to frequent resets which inherently weaken security. A passphrase policy directly addresses this by leveraging the principle that length, rather than complex character requirements in a short string, is the primary driver of password strength (entropy). A passphrase, such as "My dog ate my homework last Tuesday!", is significantly longer than a 14-character complex password, making it far more resistant to brute-force attacks. Despite its length, it is much easier for a human to remember because it forms a coherent, often personal, sentence or phrase. This allows organizations to enforce a policy that is both highly secure and user-friendly, reducing the likelihood of users writing down passwords or frequently resetting them due to forgetfulness. Comparing this to the distractor options, reducing the length to 8 characters (Option C) directly compromises security, which is contrary to the goal of *enhancing* it. While password managers (Option B) are excellent tools for managing multiple complex passwords, they still require the user to remember a single, very strong master password. This option doesn't solve the fundamental problem of the initial login's memorability for the user, and single sign-on (SSO) only helps after the initial authentication. Biometric authentication (Option D) offers convenience and can be a strong factor in multi-factor authentication (MFA), but it's not a complete replacement for passwords in all corporate scenarios due to potential limitations in deployment, recovery, and universal applicability. Passphrases, conversely, enhance the primary authentication method's security and usability simultaneously, making them the most balanced and effective solution for the described problem.

More questions from this exam

Keep practising from the same exam bank, or move into a focused topic page if this question exposed a weak area.

FAQ

Questions learners often ask

Keep practising

More 220-1102 practice questions

• →A change advisory board (CAB) approved a standard change to update antivirus definitions on all servers. The technician…
• →A company's change management policy requires all server changes to be approved by the Change Advisory Board (CAB). A te…
• →A company is implementing a bring-your-own-device (BYOD) policy and needs to ensure that corporate data on employee mobi…
• →A company requires employees to present both a smart card and a PIN to log into their workstations. Which authentication…
• →A company requires all Windows 10 workstations to be able to join an Active Directory domain. Which edition of Windows 1…
• →A company wants to allow employees to securely access internal resources from home via the internet. Which method provid…