I have configured the Password policies in OAM. While performing a change password function, I got the message “Cannot modify password” in the change password screen. Nothing suspicious in OID (OAM User store) for password related attributes.
I have the seen the below error in the Identity Server logs:
2011/02/16@10:33:09.759368 317 317 LPM ERROR 0x00000901 lost_pwd_mgmt.cpp:263 “Cannot modify password” LoginName^oamtestuser63
The user oamtestuser63 is performing the change password.
Cause:
Password minimum age is configured for certain no. of days.
Solution:
password minimum age was configured as 4 days in the Password policy. This means that the user will not be able to change the password for 4 days after the password is created in LDAP.
So changing it to 0 or leaving it blank worked!!
Thought worth sharing this!!