Microsoft KB Archive/322264

= Users are not prompted to change password in OWA =

Article ID: 322264

Article Last Modified on 10/25/2007

-

APPLIES TO


 * Microsoft Exchange Server 2003 Enterprise Edition
 * Microsoft Exchange Server 2003 Standard Edition
 * Microsoft Exchange 2000 Server Standard Edition

-



This article was previously published under Q322264



SYMPTOMS
If a user logs on to a domain by using a Windows 2000 user account, the user receives the following message (where  is the number of days until the password expires):

Your password will expire in  days. Do you want to change it now?

However, when the user logs on to Microsoft Outlook Web Access (OWA), the user does not receive a message about changing the password.



CAUSE
This problem occurs because the accounts that are associated with the Exchange mailboxes have been disabled, and the accounts in a different Microsoft Windows 2000 domain have been associated with the mailboxes. A one-way trust exists from the Windows 2000 domain to the domain that contains the mailboxes. This one-way trust prevents queries to the Active Directory directory service from the domain that contains the Exchange mailboxes, and prevents password-related information from being retrieved and passed on to the user.



WORKAROUND
To work around this problem, establish a two-way trust between the domains. However, this workaround does not apply if you are running Exchange in a resource forest/accounts forest configuration. For more information about this configuration, see the &quot;More Information&quot; section. For more information about trust relationships, click the following article number to view the article in the Microsoft Knowledge Base:

310996 Active Directory Services and Windows 2000 domains (Part 1)



STATUS
This behavior is by design.



MORE INFORMATION
The password expiration message is based on the pwdLastSet attribute. When you run Exchange in the resource forest/accounts forest configuration, the global catalog servers of the account forest cannot cache the pwdLastSet attribute from the resource forest. For more information, click the following article number to view the article in the Microsoft Knowledge Base:

937011 Password expiration messages no longer appear in Outlook Web Access after you update Exchange Server 2003

Additional query words: XCCC

Keywords: kbbug KB322264

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.