We are testing out some new policies. (MIT Kerberos5 1.4.3) We have found that a privileged principal "ROOT/admin at MYCELL.EDU" cannot overrule the password history policy on a standard principle but it can/does ignore the password minimum life. Is this a feature or a bug?