Force password change after next login checkbox

Notes cannot "load [the new password] from the ID-Vault" -- N/D doesn't store plaintext passwords in the ID vault; that would be hideously insecure.

You are talking about passwords for "all ... HCL clients" ? - some of those might be SPNEGO/AD passwords, others stored in read-only LDAP directories, and some might not involve HCL products at all (Windows password for NSLv3).

With requirements like this, you can use a centralized IDP to manage your passwords, password policies, change intervals, etc. and configure N/D to use that IdP via SAML or OIDC, and use feature functionality like NSLv3, NBA, and passkeys to remove passwords from the picture entirely whenever possible.

Since this is possible already, the intention of this idea is already 'shipped' but the ideas as worded has not. For now I'll keep this idea open for further discussion.

For me it should be done by selecting the person document(s) and a new option under "Tools" -> "Person" (Admin client; right hand side) named "Force password change" or similar.

Policies are for long-term settings.

Yeah, let's say, if a company has over 1000 users in the Domino Directory and all users have a password on the ID and an Internet password...

So the IT has now made a new password policy (e.g. 12 characters, upper lower case, numbers and special characters).

The IT management wants all users to change their passwords according to the new policy - asap! For security reasons.

All accounts that do not change their password within a week will be blocked.

But the Notes should only ask the user to change the password once. If a user uses multiple PCs or Citrix with multiple Notes configurations, the user will be prompted several times for a password change.

HCL Domino also does not provide a real overview of who has changed their password and who has not.

It's still a challenge for HCL Notes/Domino to find its way into the 20s.