This is a start, an article from Microsoft on password expiration:
https://blogs.technet.microsoft.com/secguide/2019/05/23/security-baseline-final-for-windows-10-v1903-and-windows-server-v1903/
Security needs to set a good password policy, and provide users with the tools they need to manage their passwords! Too many users are not using password safes and have to manage their secrets in text files, email, or post-it notes.
Leave a Reply