In recent release 6.49 (Stable) MikroTik lunched "expired password" for user. It is better than never from MikroTik.
Although MikroTik always inspired it's users to change password in regular interval but often users do not follow. But, from now at least Network Administrator may force users to do it. There are no doubt "expired password" is not directly terms of security but certainly this cautious is very effective to ensure security. Mainly it is an Administration policy and it's effectiveness is so high.
As figured, "Expire Password" is added. If Network Administrator click it, the account will be declared as "expired" then in next login the particular user will be promoted to change his/her password as followed.
So, far it's seems good. But, I think MikroTik may do add more to it. Like as, "Expire Password" interval, "Inactive Login Expire" and so on. Then it will become more robust. I hope MikroTik will do it in next updates.
However, still we can do many things automatic so far by Scripting and Scheduling.
Suppose, we have 6 users in a MikroTik. We may do following Script for "expired password".
As Administration policy we thought after 30 days interval need to "expired password". Then we may count following Schedule.
Thanks for reading. Have a nice day!!!
