Re: Bah, humbug
We changed our internal policies on password lifetimes to be practically the complete opposite of what you suggest. Frequent changes are usually pretty predictable. Old password +1 or similar.
The theory espoused by correct battery horse staple is is a good one; and we back up the VPN with MFA.
Single sign on is implemented for the more common systems; though there is a long way to go to get the rest into that space; reducing the number of passwords one needs to juggle (and preferably avoid writing them down).
I'd say passwords are dead but alternatives aren't exactly readily available.