Microsoft and NIST password guidelines recommend stopping the periodic password reset and eliminating password complexity requirements.
Moving to a password policy that eliminates regular AD password resets has numerous benefits:
- It improves user satisfaction
- It saves IT budget
- Most importantly, it improves security
But here are some other things you should do.