Greetings,
I'm implementing strict password polices at a new client and right now their passwords are set to never expire. There's a handful of upper mgmt people that want to keep the password they're using as it does follow the complexity rules I'll be implementing. Everyone else I will be assisting with resetting their passwords as they've just never done it before. My question is, I'll be setting the expiration to 180-days, if the people who retain their existing password when this policy goes into effect, but will change after 180-days, what will be the current "time" on their existing password when I apply the policy? I guess I just don't want them to be prompted to change it within a couple days/weeks.