One of our new password strength criteria is for the new password to be uniquely different from the old one. For example I'm trying to prevent things like:
Old Password: TestPass01
New Password: TestPass02
I've been looking online all day. I guess I'm just not using the correct key words in my searches.