Vault user vadmin password expired?

So I figured out what is happening. I turned SQL Profiler on, and used postman to just send the request as detailed in the opening post (otherwise I would get too much info from SQL Profiler to quickly find what I'm looking for).

exec sp_executesql N'SELECT [pwd_is_set_on], (SELECT MIN([maximum_pwd_age]) FROM innovator.[IDENTITY] WHERE [maximum_pwd_age]>@maximum_pwd_age AND [id] IN (SELECT [ID]
FROM [innovator].[GenerateTableOfIDs]( @idens_list ) )) as [max_pwd_age_value], DATEDIFF(d, ISNULL([pwd_is_set_on], [created_on]), GETUTCDATE()) [diff] FROM innovator.[USER]WHERE [id]=@id',N'@id char(32),@maximum_pwd_age int,@idens_list ntext',@id='EB2D5AA617FB41A28F081345B8B5FECB',@maximum_pwd_age=0,@idens_list=N'''3A4152FA2B8E4315AA183287C9AF1EE8'',''A73B655731924CD0B027E4F4D5FCC0A9'',''87EDD3392BA843EF8610117AA8062804'',''BE4CA12BE9B745239607E23C2C3CD95A

that query returns

pwd_is_set_on max_pwd_age_value diff
NULL 90 5628

@id='EB2D5AA617FB41A28F081345B8B5FECB' this is the vadmin user What I noticed is that it sends 4 ID's for identities and when I checked those, it was the identity for the user that is logged in Aras and the groups it is a member of. Then it clicked.

Content-Type:text/xml
SOAPACTION:GetItem
AUTHUSER:vadmin
AUTHPASSWORD:C264E88F8ED2BAFBBC5EC79197FF2CCB
DATABASE:pdm-master
LIKEVALIDATEUSER:1
VAULTTOKEN:5mepMI0CQgpwujCJ-ouEwzzSxWOcXpdCqg9c2uvXUYvatWxTEVzVSA2
Host:localhost:8080
Cookie: ASP.NET_SessionId=tosjxk13jwrwfcrf4h23ytbm
Content-Length:347
Expect:100-continue
Connection:close

It uses Cookie: ASP.NET_SessionId=tosjxk13jwrwfcrf4h23ytbm to get the identies, while using the AUTHUSER header for user. When I removed the Cookie from the headers in Postman, I got the response I was expecting. So for now, until this is fixed, we're stuck with not forgetting to update vadmin's pwd_is_set_on field every 90 days.