FreezerPro

Hi Jennifer, we have enabled strong passwords in our system, so my problem is solved r.e. temporary passwords for new users. 

With regards to frequency of changes, I've seen research to suggest it is actually less secure to force users to change their passwords frequently, as we are now dealing with 100 passwords plus each at any one time across work and personal lives. Having that many and then is impossible to track and people end up having to write down passwords somewhere - for those of us not tech savvy enough to operate keychains, this poses more of a security risk than not changing passwords frequently.

Would it be possible to add additional options for frequency of password change? At the moment, the limit is 90 days for any password. I would definitely prefer the option to keep one password for say a year instead.

Have you tried enabling strong passwords in the system settings? It sets a default password expiry of one month, and forces new users to create new passwords on first log-in.

This would be important for us. Also, I've not yet found a way to make a login for someone and enable them to change their password. I would normally give a temporary password and need the system to prompt the user to change their password on first login.