Description

It was found that the password policy does not expire in 90 days. By not rotating password every 90 days, the risk of user theft is rising.