User Management now allows administrators to invalidate passwords replacing each password with a long randomly generated string. This is useful to make sure that nobody can log in to a TEST instance with their PROD password for instance.
Administrators can also re-set passwords by triggering a "set your password" email with a link to affected users which is helpful to meet enterprise requirements of requiring password changes on a regular basis.
This feature can be used from Scheduled Actions or used as a Bulk User Action on one or more users using the search options outlined here and then following the steps shown below:
Confirm your selection of users
Select the "Invalidate user passwords" action and click next
Choose whether you want a password reset link sent to the affected users with a checkbox and click next
Confirm the request and your work is done!