LDAPS is required when users want to modify their own password.
- First, check if LDAPS is enabled on backend LDAP auth server, if negative, enable it by following KB9980 - Configuring Windows 2003 Server and the PCS for LDAPS
- Microsoft Active directory has its own password policy, so the new password must match the policy. The following is how to check the password policy on Microsoft Domain controller:
- Start menu > Run
- Select Computer Configuration
- Then Windows settings > Security settings > Account policies
- Select Password Policy