This object represents whether or not a user with an expired password
should be forced to alter their password at the next log-on. When a user
logs on with an expired password the system will either reject the log-on
attempt or if allowed to log-on then the user may be forced to update
their password immediately depending on this setting.
This functionality is only valid for administrative users.
The default value is disabled.