The something you know authentication factor typically refers to a shared secret, such as a password or even a PIN. This factor is the least secure form of authentication. If you’re planning on taking the Security+ exam, you should have a basic understanding of the important password security concepts.
Here's a sample Security+ question?
Q. A user calls into the help desk and asks the help-desk professional to reset his password. Which of the following choices is the BEST choice for what the help-desk professional should do before resetting the password?
A. Verify the user’s original password.
B. Disable the user’s account.
C. Verify the user’s identity.
D. Enable the user’s account.
Do you know why the correct answer is correct and the incorrect answers are incorrect? See the full explanation and the correct answer here.