Failed logons due to expired passwords: Password change functionality in RD Web Access

One of the questions that some customers have asked us is “How can users change their expired passwords when connecting to Windows Server 2012 (including R2) and Windows 8/8.1?”

As you might already know,  with Network Level Authentication (NLA) enabled in Windows Server 2012 R2 and Windows 8.1,  RDP connections from users with expired passwords fail with a logon error similar to the following error.

clip_image001

To resolve this problem, you can enable the password change functionality in RD Web Access. With password change functionality enabled, users are able to change their expired password.

To enable password change functionality in RD Web Access in Windows Server 2012 and Windows Server 2012 R2, refer to this TechNet Wiki page. For RD Web Access in Windows Server 2008 R2, refer to this excellent post by Freek Berson.