I have a policy that is not going to include a password expiration.
But I do want to verify that existing passwords comply and if they
don't comply, I want users to change them. But the only option I see
that limits grace logins can't be enabled unless the password
expiration setting is enabled. Any suggestions?