Only the administrator or user can change a static password; however, these passwords have no expiration period, so if a hacker breaks a password or your password database, he will have indefinite access to the network.

Aging passwords are changed on a regular basis, typically thirty to sixty days.

If a network attacker succeeds in getting a password, it is possible to change it before the attacker actually gains further access to the network.