You've been called in to solve a problem for CSM Tech Publishing, which is running Windows Server 2016 servers in a domain environment. Strict account policies that require password changes every 20 days, a password history of 24, complex passwords, and an account lockout threshold of 2 are in place because five high-level managers have access to information about future projects that must be kept secret. The problem is that the support team is constantly fielding calls to unlock accounts and reset passwords because users forget them. Worse, many users have taken to writing their passwords on notes stuck to their desks or monitors. What can you suggest to maintain a strict password policy for the five managers but loosen requirements for the remaining staff? What steps would you take?