Implementing a password expiry forces all users to change their passwords after a set period of time, such as every 90 days. You configure the password expiration dates on the Application Server using the operating system security settings. IMPAX adopts these settings.
 | Note: If you are mapping users to an external LDAP system, the IT department in charge of that system determines password policies, configures password expiry, and so on. |
To configure password expiry
On the Application Server, open Control Panel
Select Administrative Tools.
Select Local Security Policy.
In the Local Security Settings dialog, expand Account Policies.
Select Password Policy.
In the right pane, right-click Maximum password age and select Properties.
In the Maximum password age Properties dialog, type a Password will expire in value (in days).
Click OK.
For the change to take effect, reset IIS on the Application Server.
Now, IMPAX enforces this password expiration date when users log into the system. An automatic reminder to change the password is added to the At-a-Glance area when the expiry date approaches. This reminder includes a direct link to the Change Password dialog.
 | CAUTION! On standalone systems running on Windows XP, password policies cannot be enforced. |