There are several possibilities for changing a user's password. Passwords of LDAP users cannot be changed.
Password is changed by the administrator
A user with the User management function privilege can change the passwords of other users.
Change password manually
A password can be changed manually in the user management (Change password).
Generate password
Alternatively, a password can be generated automatically in the user management (Generate password).
Password is changed by the user
The user has two possibilities for changing his password in the login dialog.
Change password
If a user's password has expired, he will be asked to change it in the login dialog (Change password). The user will receive an e-mail containing the new password.
Reset password
If the user has forgotten his password, he can request a new one (Reset password). The rest of the procedure depends upon whether a one-stage or two-stage password change is enabled (Administration > Configuration > User management). For the one-stage change the user immediately receives an e-mail with the new password. For a two-stage change the user first receives an e-mail asking him to confirm the resetting of his password within a specific period of time. The user receives a new password after he has confirmed.