OWA password expiration notification when you use fine-grained password policy
In Outlook on the web or Outlook Web App (OWA), the password expiration notification window is displayed when a user tries to log on to their mailbox. However, the fine-grained password policy shows that the user’s password is not expired.
This issue occurs because the user is assigned a fine-grained password policy where the maximum password age is longer than the maximum password age in the default domain policy.
To work around this issue, use one of the following options.
Option 1: Disable the fine-grained password policy for all users.
Option 2: Disable the OWA password change feature from Exchange Server.
Option 3: Change the Maximum Password Age value for the Default Domain Policy setting so that it's larger than the value in the fine-grained password policy.
AD DS fine-grained password and account lockout policy step-by-step guide
Updating the Default Domain Policy GPO and the Default Domain Controllers Policy GPO
Article ID: 3141296 - Last Review: 02/26/2016 17:44:00 - Revision: 3.0
Exchange Server 2016 Enterprise Edition, Exchange Server 2016 Standard Edition, Microsoft Exchange Server 2007 Enterprise Edition, Microsoft Exchange Server 2007 Standard Edition, Microsoft Exchange Server 2010 Enterprise, Microsoft Exchange Server 2010 Standard, Microsoft Exchange Server 2013 Enterprise, Microsoft Exchange Server 2013 Standard
- kbsurveynew KB3141296