CompTIA SecurityX Practice Test

The concept being tested is how long a user must wait before changing a password again. This is controlled by the Minimum Password Age policy, which sets the minimum number of days that must pass after a password change before another change is allowed. This helps prevent quick, repeated resets, and supports other rules like password history. For example, if the minimum age is seven days, a user who just changed their password can’t change it again for a week. Password history, auditing, and MFA address other aspects—reusing previous passwords, logging events, and requiring multiple authentication factors—not the timing of when a password can be changed.