I agree that requiring complex passwords often results in clients posting passwords on sticky notes. But I believe consultants have a responsibility to protect client's data.
Just tell a company that's lost confidential data as a result, or inadvertently exposed customer, client and/or business partner data and committed an unauthorized distribution of sensitive data, that complex passwords are unnecessary. You'll hear quite a different story in response.
Keep Up with TechRepublic