Users cannot change their passwords

If users cannot change their passwords, this might be because of a default security policy setting that requires user accounts to maintain a password for a certain number of days before the password can be changed. Administrators can change users' passwords at any time, regardless of the policy setting.

To correct this problem, change the

Minimum password age

policy setting.

Users should not use blank passwords for

Windows

-linked accounts or

Windows

-linked group accounts, otherwise users might experience intermittent security failures or an inability to log on. As a matter of good security practice, do not use blank passwords with accounts. If you do not want users to use a password for

Windows

-linked accounts or

Windows

-linked group accounts, on each user's local computer disable the

Windows

local security policy

Accounts: Limit local account use of blank passwords to console logon only

.