Password change only works through Forgot Password flow

[twar...@avantia-inc.com]

I'm trying to use PWM with Active Directory running on Windows Server 2008 R2 and using the local DB. I have everything configured and the health page tells me my ldap and database connections are good, but I can't change a password by logging in and selecting Change Password. No matter what password I enter, I get the Change Password screen presented again and the logs say

2014-05-16 18:19:11, DEBUG, servlet.ChangePasswordServlet, 4006 PASSWORD_BADPASSWORD (error setting password for user 'CN=Travis Warholic,cn=Users,dc=avantia,dc=net'' com.novell.ldapchai.exception.ChaiPasswordPolicyException: [LDAP: error code 19 - 0000052D: AtrErr: DSID-03190F1B, #1:
0: 0000052D: DSID-03190F1B, problem 1005 (CONSTRAINT_ATT_TYPE), data 0, Att 9005a (unicodePwd)
])

But if I use the Forgot Password flow, and answer my challenge questions first, I can use the same exact password and it will successfully change it. Anyone have any ideas as to why this may be working this way?

Thanks,
Travis

[tomgreene]

Did you ever figure this out? 

[g.de...@gmail.com]

Hie,
I'm interested too because I get exactly the same issue but everything I've tried change nothing (ex : lower AD Password policy).
Thanks for any help to go further.
Regards

Guillaume

[jne...@extremereach.com]

I believe this is working as it should. I have a similar environment and by design (GPO), we are able to reset the password but only after a day has lapse. Therefore not allowing users to reset passwords at will x-number of times per day.