Windows – AD User Password reset Tool

December 15, 2014

It has always been an issue to set up a self-service web facing Password Reset Tool.

Well if you have an Exchange server running let’s say 2010 SP1 or higher, you have all you need to make it work Smile

The only thing you need is to make an extra registry key entry in your CAS server. Which is in small organizations the same server as the Exchange backend server.

Solution :

  1. On the Client Access Server (CAS), click Start > Run and type regedit.exe and click OK.
  2. Navigate to HKLM\SYSTEM\CurrentControlSet\Services\MSExchange OWA
  3. Right click the MSExchange OWA key and click New > DWord (32-bit)
  4. The DWORD value name is ChangeExpiredPasswordEnabled and set the value to 1.
    Note: The values accepted are 1 (or any non-zero value) for “Enabled” or 0 or blank / not present for “Disabled”
  5. After you configure this DWORD value, you must reset IIS. The recommended method to reset IIS is to use IISReset /noforce from a command prompt.

Here is the result !


As of now your users can reset their passwords themselves Winking smile

PS : To check the Exchange version you can do this using the Outlook client.

Press CRTL + right click on the Outlook Icon in the system tray.

Select the Conntection status.


And read out the version column.


Or you can check the management console


Or you can use Powershell to do the job …

You can find the build numbers here :

Enjoy !