The minimum password age policy setting determines the age (in days) that a password can be used before the system requires users to change it. You can set the number of days that the password expires from 1 to 999, or you can specify that the password never expires by setting the number of days to 0.
If the maximum password age is 1 to 999 days, the minimum password age must be less than the maximum password age. When the maximum password lifetime is set to 0, the minimum password lifetime can be any value between 0 and 998.
Precautions for password setting
Users may prefer the passwords they like to use, because these passwords are easy to remember, and they believe that the passwords they choose are safe and will not be revealed. Unfortunately, passwords will be leaked, and when an attacker who knows user data targets a specific single user account, reusing the old password may lead to security holes.
To solve the problem of password reuse, you must use a combination of security settings. Combining this policy setting with the "Mandatory Password History" policy setting can prevent the old password from being easily reused.
For example, when the "Mandatory Password History" policy setting is configured to ensure that users cannot reuse their last 12 password, but the "Minimum Password Life" policy setting is not configured as a number greater than 0, users can change their password 13 times in a few minutes and then reuse their original password. For the Enforce Password History policy setting to take effect, you must configure this policy setting to a number greater than 0.