Whenever someone changes their password, the tamuStatus attribute is checked for the presence of the passwordExpired flag. If the flag is present, it is removed when a new, acceptable password is set. Status information is updated in the various databases supporting NetID account management and then the clock starts anew.
For this mechanism to work, there must be an avenue for customers to set their password when it is marked expired. For this reason, the password reset application will not check for passwordExpired as part of the login process. This will allow the customer to login to the account management system and change their password. Additionally, new or updated account and identity management systems will function in a similar manner.