My propose environment includes Exchange 2010 environment with CAS servers published thorugh ISA 2006. OWA is published using forms-based authentication and RSA (two-factor authentication). Only Integrated Windows Authentication is enabled on the OWA virtual directory. Some of my users are do not possess RSA tokens and only access e-mail using OWA internally. These particular users require the ability to change their password through OWA. Is forms-based authentication required on the CAS Server's OWA virtual directory to allow these particular users to change their password?

Hi, No, the forms-based authentication is not required.Please remember to click Mark as Answer on the post that helps you, and to click Unmark as Answer if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. Thanks Gen Lin-MSFT

Hi, Form based authentionaction is not required. ThanksNagaraj N

If forms-based authentication is not used will the user receive a notification that the password is about to expire in Exchange 2010 Outlook Web App?