If we configure vBSecurity's password feature what happens when a user logs in with a password that doesn't meet the requirements? Are they prompted to update their password or are they just let in? Also, when a password is changed is the user emailed to confirm the change or, in the very least...