How is "Credential expiration" enforced?
If it is set to 30 days today:
1. does it start counting 30 days from today or
2. does it count from the most recent successful validation of credential?
Component : VIP
The Credential Expiration Policy is a job that runs on the backend around midnight (GMT) each night.
The last validated date would have to be greater than what your policy is set to before it is unregistered from the user and set to inactive status.
If you set the credential expiry to 30 days today, at midnight(GMT) any credentials that had not been successfully validated in the past 30 days will be unregistered from the user and set to inactive status.