I'm not sure if 7.6 has any enchacement for password management (probably not), so you cannot force user to change password on first login, you cannot set id lock after inactivity or bad password...
Sad but true
However, using integrated login all password management can be done by AD or other service
Thanks for your response.
I just want to confirm about that.
Please send me if you have any documentation about this case.
Integrated login is a standard LDSD feature and described in the setup guide.