We know now that having unique, secure passwords are more important than changing it every X days.  Because we are all forgetful, users can forget passwords when they have to change them often.  As such, it’s more a user-experience hurdle than a security benefit. But don’t take my word for it.  Microsoft has published guidelines for password policies for Office 365 users. What is critical is to use unique passwords for each site.  The easiest way to do that is to use a Password Manager.  Google Chrome now has one integrated into Google Chrome which syncs your passwords to the Chrome iOS App.  (I have to assume the same is true for Android users.) Speaking of free password managers, Mac users can sync their passwords with iCloud Keychain. Turn on iCloud Keychain:
  • Open Settings
  • Tap on your name at the top
  • Tap iCloud
  • Swipe up and tap Keychain
  • if the button is green, iCloud Keychain is in use

Hey Windows 10 Home Users!

Looking to remove password expiration?

Open a CMD prompt As Administrator and paste in the following, leave the quotes but replace USERNAME with your username.

wmic UserAccount where Name=’USERNAME’ set PasswordExpires=False

You can list usernames with this command:

net user