Novice Level

Working with Windows Accounts and Security Policies

Pricing
30 minutes
  • 3 Learning Objectives

About this Hands-on Lab

In this lab, we will learn how to configure Windows accounts and security policies. Specifically, we will set password requirements, configure account lockout settings, and create a temporary user account that expires in one week.

NOTE: Once the lab is ready, please wait 4-5 additional minutes before attempting to remote desktop to the Windows machine. Prior to that, the provided credentials will not work. This is because the Windows machine runs several preparation scripts once it starts.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Set password requirements on the local server.

NOTE: Once the lab is ready, please wait 4-5 additional minutes before attempting to remote desktop to the Windows machine. Prior to that, the provided credentials will not work. This is because the Windows machine runs several preparation scripts once it starts.

  1. Open the Server Manager.
  2. From the Tools menu, select Local Security Policy.
  3. Expand Account Policies, and select Password Policy.
  4. Configure the following:
    • Maximum password age = 180 days
    • Minimum password age = 3 days
    • Minimum password length = 12 characters
Configure the account lockout settings.
  1. Open the Server Manager.
  2. Click Tools, and select Local Security Policy.
  3. Expand Account Policies, and select Account Lockout Policy.
  4. Set the following values:
    • Account lockout threshold = 3 invalid logon attempts
    • Account lockout duration = 10 minutes
Create a temporary user account.

Create a temporary user account called contractor1 that will expire one week from today.

  1. Open the Command Prompt as Administrator.
  2. Run the following commands (remember to replace <MM/DD/YYYY> with the date one week from today):
    net user contractor1 Pinehead123abc! /add
net user contractor1 /expires MM/DD/YYYY
Contact SalesSee Pricing

Additional Resources

In order to increase security on one of the non-domain Windows servers, your supervisor has asked you to make some changes to the security settings of that Windows server. These changes include the following:

  1. Set the minimum password length to 12 characters.
  2. Set the maximum password age to 180 days.
  3. Set the minimum password age to 3 days.
  4. Set the number of failed logins to lock an account to be 3.
  5. Set the account lockout timer to 10 minutes.

You've also been asked to create a temporary user account called contractor1 that will expire one week from today.

Connecting to the lab:

  1. Use RDP (Remote Desktop) to connect to the public IP address of the instance on port 3389.
  2. Log in with the username and password generated by the lab.
  3. If you need some additional guidance on connecting to the lab please see the "Connecting to a Windows Lab Server" video in the "Course Introduction" section.

NOTE: Once the lab is ready, please wait 2 additional minutes before attempting to remote desktop to the Windows machine. Prior to that, the provided credentials will not work. This is because the Windows machine runs several preparation scripts once it starts.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Don't have an account?

Get Started
Who’s going to be learning?
MyselfMy Organization