This only applies to local_db AuthN.
On the RSC Trial instance, I (as Admin) set up some users and sent them temporary passwords.
I advised them all to change their passswords but they all said they could not.
I can't change mine either (by the Change Password link).
But I can change passwords from the Admin page edit user link.
Is this a bug or a misconfiguration?