Optionally the users can be redirected back to the home page when a password change is enforced.
There is the ability to define 'exempt' users, i.e. users for whom the administrator does not want to enforce password changing.
The password entered by the user is checked against the previous user passwords (number is site defined) to ensure that it is changed and that the user is not reusing a password again, or just pressing the submit buttom without providing a new password.
The latest version permits the specification of password criteria, and also incorporates an optional password generator to create passwords meeting the specified criteria.