as per enterprise security requirements I just wanted to ask, if it's possible to extend the complexity policies to meet certain password requirements like:
enforce password expiration period, like configurable parameter of the password policy? After a certain amount of time password expires and got invalidated?
In addition to, in order to be fully security compliant, previous passwords should be saved in order to enforce user not to repeat previous N passwords. That feature currently can be implemented using triggers, however superuser always has possibility to replace or change trigger, so embedded mechanism would be preferable =)