Forum Discussion
Unable to change expired password
- Curiosity: Are you talking about the BUILTIN\Administrator, i.e. the S-1-5-21-DOMAINSID-500, or another account you created after that?
Joachim_Otahal That's very helpful, so thanks for asking the question.
It's been years since I set up an AD domain from scratch. Apparently when I created this domain for evaluation, I had to set a password for the built-in Administrator account. By default the built-in Administrator's password doesn't expire, so I was able to log on with that account. As it turns out that did give me second account to use after all.
This solves my issue of not being able to log on, but more importantly this has got to be a bug. I used the Administrator account to reset the other DA account's PW, leaving the setting "User must change PW at logon". Essentially the same thing happened: I enter the PW, I get the message that I need to change the PW, but after doing so it simply repeats that I need to change the PW.
Using the Administrator account to reset the PW, unchecking the option to force change at logon, of course gets around that issue.
- Thanks, but that's not what I meant.
The bug is that a password can't be changed after it expires or when it's reset by an admin with the requirement to change it at logon. This is specific to the Server 2025 preview. See the first paragraph in my original post. I'm posting here mainly to report it as a bug.- On a PC or server connected to the network (does not have to be in that AD, but DNS should be pointing to that DC): Hit CTRL+ALT+DEL -> Change Password. In the topmost field, you can enter ANY account, but you should use the testuser@testdomain.local format and not NETBIOS, and then enter the old and new password.
If that was not working as well, like in Matt K's case, it could be a bug.