>OTOH, you should be grateful that your passwords are allowed to exist as long as 6 weeks. I'm not kidding here - a lot of organizations are much stricter than that - and in many cases, rightfully so. I could certainly see it for your organization.
Al,
I think that 42 days (6 weeks) is the NT standard number of days for password rollover so there's nothing here that is out of the ordinary. As a matter of fact as soon as I decide to inflict the pain on myself by forcing my users to regularly change their passwords ("I forgot my password again - it's your fault!" *g*) that was exactly the number of days I would have used.
Nothing whatsoever unusual about this number of days. You are quite correct in your observations.
As far as all the other stuff it does seem to be an overreaction.
Best,
DD
Best,
DD
A man is no fool who gives up that which he cannot keep for that which he cannot lose.
Everything I don't understand must be easy!
The difficulty of any task is measured by the capacity of the agent performing the work.