A fix was applied to password expiry. It was possible before not to define an expiry time and at the same time indicate that passwords should expire. Now if you don’t define an expiry timeframe (which can be any duration you like but we normally recommend 30, 60 or 90 days) the system will assume you don’t want passwords to ever expire. You have to reset your passwords once to trigger this new feature as the expiry date is assigned when passwords are reset