Description should include the
type of access granted to a user with a proper domain logon
permissions needed for a user to change a password
frequency of a mandatory password change
constraints that should be implemented in password selection.