I am trying to set a policy for users. One of our requirements is that passwords not be reused for at least 1 year (we change passwords every 30 days). The problem seems to be that the -history parameter cannot be greater then 9. Is this something I am doing wrong or is this indeed a restriction on the number of kept old passwords? Thanks