Configuration required
Ubuntu doesn't set a limitation on the age of passwords. However, the STIG recommends setting a limit of 60 days before a password must be changed.
To enable this configuration, use this Ansible variable:
password_maximum_days: 60