Can only Change Password w/ Expiration?

[Paul Gomez]

Hello,

I have an issue where my users can't seem to use Change Password module to change a password. If I go to AD and expire the account and log in to PWM I can change the password at the expired password page. 

When the user tries to do it on the Change Password module they get 

"New password does not meet rule requirements"

(though it does meet the requirements).  An admin changing through Help Desk module also works with no problem. 

My minimum password age is 0 so I don't think its that. 

-PJ

[Jason Rivard]

It's usually minimum password age.  Check that you don't have a group policy or password policy object setting the minimum age somewhere your not expecting.  Unfortunately AD LDAP error codes are not very descriptive so there's not much to go on.  You can try changing the user's password through a windows utility to see if you get a better error message.

[Jonathan De Nil]

Digging up this issue because we just experienced the same twice in the past week. 

Changing passwords works a treat, but it doesn't work when the password is expired. 
Getting the same confusing error message "New password does not meet rule requirements".

I haven't found a way for the user to get past this. When I reset his password and have him change it through PWM it works immediately, but this always means intervention from an admin.