When the user administrator sets up a new user account or sets the password of an existing user account to a new value, the user must change this “initial” password the next time he or she logs on (to ensure that only the user himself or herself knows the password).
You use this parameter, login/password_max_idle_initial to set the maximum interval between the time of the password being (re)set and the next logon using this initial password. After this time has expired, the message “The initial password has expired; request a new one” is displayed, and logon is denied.
Note:
Exception: User accounts of the types SERVICE and SYSTEM. (The password is immediately valid for an unlimited period and can only be changed by the user administrator).
