When you try to change your network user password, you receive this error "password cannot be changed because it was changed in the last 10 days." This is a Password Policy setup in your Windows Active Directory security policy.
Here's where you can check your Password Policy. Please note, you need Active Directory administrator rights to manage your AD Server.
- Login to your Active Directory (AD) server using Administrator or equivalent rights.
- Click on Start, All Programs, Administrative Tools, then Domain Security Policy.
- In Default Domain Security Settings, click on + sign in Account Policies. This will show you the Password Policy, Account Lockout Policy and Kerberos Policy.
- Click on Password Policy, you will see in the right box the following policies e.g. Enforce password history, Maximum password age, Minimum password age, Minimum password length, etc.
- Double click on Minimum password age to see the properties.
- In Security Policy Setting tab, this is where you can manage the number of days you want your password can be changed after.
- Let's try, 3 day
- Click on Apply to execute.
With this example, you just change your password age to 3 days. Meaning, when you change your password on September 11 you can only change it after 3 days on Sept 14. This is required to enforce password history policy.
Here's a good reference to read: http://technet.microsoft.com