In a complete backup, what type of user settings would NOT be included?

In a complete backup, user password policies are not typically included because these settings are often tied to security protocols that are designed to protect sensitive information. Password policies usually dictate how passwords should be created, managed, and enforced within an organization. Including such policies in a backup could pose a security risk, especially if that backup were to be accessed by unauthorized entities, as it might reveal critical details about how user authentication is structured.

On the other hand, secondary admin accounts, custom user roles, and access control lists are user settings that define permissions and roles within the system. These settings are essential for maintaining the structure and functionality of the system upon restoration from a backup. They ensure that the user hierarchy and access levels are preserved, thus enabling the system to function as it did prior to the backup. Therefore, the exclusion of user password policies from a complete backup is a security measure to protect sensitive authentication data.