I have been talking over the past year about “Hardening Active Directory”.   In those discussions, we have been talking about implementing a granular password policy so that you K-2 students have a lower password requirement than your financial and guidance users.