Allow the ability to set a specific time period at which time users are forced to refresh their passwords. For some companies the need to keep data secure is paramount. Forcing staff to keep passwords changed is a difficult task and thus having this feature would prevent any problems with a potential inadvertent access.

Crowd sets an attribute in the request that is send to the remote webapp. This request among other things specifies that the web app needs to reset the password. However, it is up to the web app to enforce that attribute and enforce resetting of the password.