Fun anecdote... I spent 6 months last year designing and implementing a 'Self-Service' password reset portal system and password synchronisation system for 50k+ users in a large organisation, only for the organisation in question to switch to non-expiring passwords 1 week before deployment.
Needless to say... usage of the system post deployment was almost non-existent.
https://www.ncsc.gov.uk/collection/passwords/updating-your-a...
Fun anecdote... I spent 6 months last year designing and implementing a 'Self-Service' password reset portal system and password synchronisation system for 50k+ users in a large organisation, only for the organisation in question to switch to non-expiring passwords 1 week before deployment.
Needless to say... usage of the system post deployment was almost non-existent.
Ah well, at least I still got paid.