With strong passwords and even 2FA it seems unnecessary to force password updates every 90 days. It would be good to have an option to disable this or at least extend the frequency of forced password updates
