Many CIOs are in the midst of an identity crisis with costly or inefficient management of users’ identities. The most common symptoms are passwords written on sticky notes, droves of staff manually handling account creation, revocation and password mismanagement. Many companies enforce password complexity and expirations of between 30 and 90 days for their most business-critical applications. As more applications are brought under this enforcement, as users exhaust their most familiar passwords amid a blur of previously used passwords that can’t be repeated or incremented.”]
Source: https://www.csoonline.com/article/2117719/managing-your-identity-crisis.html