We are testing out some new policies. (MIT Kerberos5 1.4.3)
We have found that a privileged principal "ROOT/admin@MYCELL.EDU"
cannot overrule the password history policy on a standard principle but
it can/does ignore the password minimum life.
Is this a feature or a bug?