A company has migrated to two-factor authentication for accessing the corporate network, VPN, and SSO. Several legacy applications cannot support multifactor authentication and must continue to use usernames and passwords.
Which of the following should be implemented to ensure the legacy applications are as secure as possible while ensuring functionality? (Select TWO).
A . Privileged accounts
B . Password reuse restrictions
C . Password complexity requirements
D . Password recovery
E . Account disablement
Answer: C,E