Change expired password in Outlook/Exchange Web Access(OWA)
If you have an Exchange 2010 environment with the Outlook Web Access configured and you want to let your users change their expired password via this portal(could be handy for external users). Exchange 2010 comes with a new feature that will allow users with expired passwords to change their password. This also works for users who have their accounts configured to change password on next logon (User must change password at next logon in Active Directory). You’ll need to change some registry keys in order to do this:
1. On the Client Access Server (CAS), click Start -> Run and type “regedit.exe” and click OK.
2. Navigate to HKLM\SYSTEM\CurrentControlSet\Services\MSExchange OWA.
3. Right click the “MSExchange OWA” key and click New -> DWORD (32-bit).
4. The DWORD value name is “ChangeExpiredPasswordEnabled” and set the value to 1.
Note: The values accepted are 1 (or any non-zero value) for “Enabled” or 0 or blank / not present for “Disabled”
5. After you configure this DWORD value, you must reset IIS. The recommended method to reset IIS is to use IISReset /noforce from a command prompt.
Important: When changing passwords, users can’t use a UPN (for example, firstname.lastname@example.org) in the Domain\user name field in the Change Password window shown below, unless E2010 SP1 RU3 or later has been deployed on the Client Access servers
Note: If you are using a CAS Array, you must perform these steps on each CAS in the array.