I’m completely and utterly convinced that corporate password reset policies are somehow tied to vacations. There’s just no other explanation for the fact that, every freakin’ time I go on vacation, my password expires just before, during, or just after my vacation.
So my theory is this. The system scans my calendar and looks for all-day events that are marked either “busy” or “out of office”. If it finds one of those, and if that all-day event spans 4 or more days, then it sets my password expiration date to happen somewhere during that time. I think it might be a random number in the range vacation±3 days.
Which is to say: I leave for vacation on Saturday, and my password expires on Thursday.