Question:

If users have both a password and passphrase, does the expiration of either prevent signon using either?

If one exceeds violation threshold and the ID is suspended are both authentication method failed?

How could the helpdesk know which failure suspended the UserID and which one needs to be reset?

Answer:

Password and passphrase have their own expiration and independent of each other.

If the user exceeds the violation threshold for either password or passphrases, they will be suspended.

This means the user will need to be unsuspended for the acid to be used.
It does not matter it they were suspended when using a passphrase or password.

Additional Information:

https://docops.ca.com/ca-top-secret/16-0/en/product-information