Change expired password in Outlook/Exchange Web Access(OWA)

If you have an Exchange 2010 environment with the Outlook Web Access configured and you want to let your users change their expired password via this portal(could be handy for external users). Exchange 2010 comes with a new feature that will allow users with expired passwords to change their password. This also works for users who have their accounts configured to change password on next logon (User must change password at next logon in Active Directory). You’ll need to change some registry keys in order to do this:

1. On the Client Access Server (CAS), click Start -> Run and type “regedit.exe” and click OK.
2. Navigate to HKLM\SYSTEM\CurrentControlSet\Services\MSExchange OWA.
3. Right click the “MSExchange OWA” key and click New -> DWORD (32-bit).
4. The DWORD value name is “ChangeExpiredPasswordEnabled” and set the value to 1.
Note: The values accepted are 1 (or any non-zero value) for “Enabled” or 0 or blank / not present for “Disabled”
5. After you configure this DWORD value, you must reset IIS. The recommended method to reset IIS is to use IISReset /noforce from a command prompt.

Important: When changing passwords, users can’t use a UPN (for example, in the Domain\user name field in the Change Password window shown below, unless E2010 SP1 RU3 or later has been deployed on the Client Access servers

Note: If you are using a CAS Array, you must perform these steps on each CAS in the array.

Below page will show when a user’s password is expired:

2 Responses so far.

  1. Do you mind if I quote a few of your posts as long as I provide credit and sources back to your website?
    My website is in the exact same area of interest as yours and my visitors would really benefit from a lot of the information you provide here.
    Please let me know if this ok with you. Thanks a lot!

Leave a Reply