Well, even the supposedly smart people screw things up. Where I work they've been working on SSO (single sign on) across the board forever. Since we're still on the way there I have 1 VPN password on a 90 day change rotation, a unix password on a 135 day rotation, a Windows password on a 180 day rotation, and then there's the SSO password which works on most webapps which is supposed to be on some sort of rotation, but it stopped happening at some point without an announcement.
Then to top it all off sometimes when you tell it to change the password it fails, but it does reset the rotation counter. And there's a post rotation counter of 5 days for some reason where you can't change your password again. So you end up with the same password and don't remember to change it until the rotation comes around again.
bleh... password management sucks