diff --git a/sormas-api/src/main/java/de/symeda/sormas/api/feature/FeatureType.java b/sormas-api/src/main/java/de/symeda/sormas/api/feature/FeatureType.java
index 7cb2d730131..ff780a60b60 100644
--- a/sormas-api/src/main/java/de/symeda/sormas/api/feature/FeatureType.java
+++ b/sormas-api/src/main/java/de/symeda/sormas/api/feature/FeatureType.java
@@ -332,7 +332,8 @@ public enum FeatureType {
 			CASE_SURVEILANCE,
 			CONTACT_TRACING },
 		null,
-		ImmutableMap.of(FeatureTypeProperty.S2S_SHARING, Boolean.FALSE));
+		ImmutableMap.of(FeatureTypeProperty.S2S_SHARING, Boolean.FALSE)),
+	SELF_PASSWORD_RESET(true, false, null, null,null);
 
 	public static final FeatureType[] SURVEILLANCE_FEATURE_TYPES = {
 		FeatureType.CASE_SURVEILANCE,
diff --git a/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Captions.java b/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Captions.java
index f83b4c374ed..92283557fd8 100644
--- a/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Captions.java
+++ b/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Captions.java
@@ -974,6 +974,7 @@ public interface Captions {
 	String Configuration_LineListing = "Configuration.LineListing";
 	String Configuration_Outbreaks = "Configuration.Outbreaks";
 	String Configuration_PointsOfEntry = "Configuration.PointsOfEntry";
+	String confirmPassword = "confirmPassword";
 	String confirmChangesField = "confirmChangesField";
 	String confirmChangesValue = "confirmChangesValue";
 	String Contact = "Contact";
@@ -1174,6 +1175,7 @@ public interface Captions {
 	String countryArchivedCountries = "countryArchivedCountries";
 	String createSymptomJournalAccountButton = "createSymptomJournalAccountButton";
 	String creationDate = "creationDate";
+	String currentPassword = "currentPassword";
 	String CustomizableEnum_hasDetails = "CustomizableEnum.hasDetails";
 	String CustomizableEnum_hasDetails_short = "CustomizableEnum.hasDetails.short";
 	String CustomizableEnumValue_active = "CustomizableEnumValue.active";
@@ -2140,6 +2142,7 @@ public interface Captions {
 	String outbreakNormal = "outbreakNormal";
 	String outbreakOutbreak = "outbreakOutbreak";
 	String passportNumber = "passportNumber";
+	String passwordStrength = "passwordStrength";
 	String PathogenTest = "PathogenTest";
 	String PathogenTest_cqValue = "PathogenTest.cqValue";
 	String PathogenTest_ctValueE = "PathogenTest.ctValueE";
@@ -3082,6 +3085,7 @@ public interface Captions {
 	String treatmentOpenPrescription = "treatmentOpenPrescription";
 	String unassigned = "unassigned";
 	String unknown = "unknown";
+	String updatePassword = "updatePassword";
 	String User = "User";
 	String User_active = "User.active";
 	String User_address = "User.address";
@@ -3100,6 +3104,7 @@ public interface Captions {
 	String User_userName = "User.userName";
 	String User_userRoles = "User.userRoles";
 	String User_uuid = "User.uuid";
+	String userGeneratePassword = "userGeneratePassword";
 	String userMyUserId = "userMyUserId";
 	String userNewUser = "userNewUser";
 	String userResetPassword = "userResetPassword";
diff --git a/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Strings.java b/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Strings.java
index ae1a8129c87..9eb5cedd332 100644
--- a/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Strings.java
+++ b/sormas-api/src/main/java/de/symeda/sormas/api/i18n/Strings.java
@@ -194,6 +194,8 @@ public interface Strings {
 	String confirmationVaccinationStatusUpdate = "confirmationVaccinationStatusUpdate";
 	String confirmExternalMessageCorrectionThrough = "confirmExternalMessageCorrectionThrough";
 	String confirmNetworkDiagramTooManyContacts = "confirmNetworkDiagramTooManyContacts";
+	String confirmPassword = "confirmPassword";
+	String currentPassword = "currentPassword";
 	String date = "date";
 	String day = "day";
 	String DefaultPassword_newPassword = "DefaultPassword.newPassword";
@@ -491,6 +493,7 @@ public interface Strings {
 	String headingcasesWithReferenceDefinitionFulfilled = "headingcasesWithReferenceDefinitionFulfilled";
 	String headingCaution = "headingCaution";
 	String headingChangeCaseDisease = "headingChangeCaseDisease";
+	String headingChangePassword = "headingChangePassword";
 	String headingChangePathogenTestResult = "headingChangePathogenTestResult";
 	String headingClinicalMeasurements = "headingClinicalMeasurements";
 	String headingClinicalVisitsDeleted = "headingClinicalVisitsDeleted";
@@ -886,6 +889,7 @@ public interface Strings {
 	String headingUpdatedPersonInformation = "headingUpdatedPersonInformation";
 	String headingUpdatedSampleInformation = "headingUpdatedSampleInformation";
 	String headingUpdatePassword = "headingUpdatePassword";
+	String headingUpdatePasswordFailed = "headingUpdatePasswordFailed";
 	String headingUpdatePersonContactDetails = "headingUpdatePersonContactDetails";
 	String headingUploadSuccess = "headingUploadSuccess";
 	String headingUserData = "headingUserData";
@@ -1453,6 +1457,8 @@ public interface Strings {
 	String messageMissingDateFilter = "messageMissingDateFilter";
 	String messageMissingEpiWeekFilter = "messageMissingEpiWeekFilter";
 	String messageMultipleSampleReports = "messageMultipleSampleReports";
+	String messageNewPasswordDoesNotMatchFailed = "messageNewPasswordDoesNotMatchFailed";
+	String messageNewPasswordFailed = "messageNewPasswordFailed";
 	String messageNoCaseFound = "messageNoCaseFound";
 	String messageNoCaseFoundToLinkImmunization = "messageNoCaseFoundToLinkImmunization";
 	String messageNoCasesSelected = "messageNoCasesSelected";
@@ -1490,6 +1496,8 @@ public interface Strings {
 	String messageNoVisitsSelected = "messageNoVisitsSelected";
 	String messageOtherDeleteReasonNotFilled = "messageOtherDeleteReasonNotFilled";
 	String messageOutbreakSaved = "messageOutbreakSaved";
+	String messagePasswordChange = "messagePasswordChange";
+	String messagePasswordFailed = "messagePasswordFailed";
 	String messagePasswordReset = "messagePasswordReset";
 	String messagePasswordResetEmailLink = "messagePasswordResetEmailLink";
 	String messagePathogenTestSaved = "messagePathogenTestSaved";
@@ -1609,6 +1617,7 @@ public interface Strings {
 	String messageVisitsDeleted = "messageVisitsDeleted";
 	String messageVisitsWithWrongStatusNotCancelled = "messageVisitsWithWrongStatusNotCancelled";
 	String messageVisitsWithWrongStatusNotSetToLost = "messageVisitsWithWrongStatusNotSetToLost";
+	String messageWrongCurrentPassword = "messageWrongCurrentPassword";
 	String messageWrongFileType = "messageWrongFileType";
 	String messageWrongTemplateFileType = "messageWrongTemplateFileType";
 	String min = "min";
@@ -1674,6 +1683,7 @@ public interface Strings {
 	String of = "of";
 	String on = "on";
 	String or = "or";
+	String passwordStrength = "passwordStrength";
 	String pathogenTestDeletedDuringLabMessageConversion = "pathogenTestDeletedDuringLabMessageConversion";
 	String pleaseSpecify = "pleaseSpecify";
 	String populationDataByArea = "populationDataByArea";
@@ -1849,6 +1859,7 @@ public interface Strings {
 	String unsavedChanges_warningMessage = "unsavedChanges.warningMessage";
 	String unsavedChanges_warningTitle = "unsavedChanges.warningTitle";
 	String until = "until";
+	String updatePassword = "updatePassword";
 	String uuidOf = "uuidOf";
 	String warning = "warning";
 	String warningDashboardMapTooManyMarkers = "warningDashboardMapTooManyMarkers";
diff --git a/sormas-api/src/main/java/de/symeda/sormas/api/user/UserDto.java b/sormas-api/src/main/java/de/symeda/sormas/api/user/UserDto.java
index 2691c7186cc..ab9462a6465 100644
--- a/sormas-api/src/main/java/de/symeda/sormas/api/user/UserDto.java
+++ b/sormas-api/src/main/java/de/symeda/sormas/api/user/UserDto.java
@@ -69,9 +69,17 @@ public class UserDto extends EntityDto {
 	public static final String HAS_CONSENTED_TO_GDPR = "hasConsentedToGdpr";
 	public static final String EXTERNAL_ID = "externalId";
 	public static final String JURISDICTION_LEVEL = "jurisdictionLevel";
+	public static final String PASSWORD = "currentPassword";
+	public static final String NEW_PASSWORD = "newPassword";
+	public static final String CONFIRM_PASSWORD = "confirmPassword";
 
 	private boolean active = true;
 
+	private String currentPassword;
+	private String newPassword;
+	private String confirmPassword;
+	private String passwordStrength;
+
 	@Size(max = FieldConstraints.CHARACTER_LIMIT_DEFAULT, message = Validations.textTooLong)
 	@AuditIncludeProperty
 	private String userName;
@@ -296,4 +304,37 @@ public JurisdictionLevel getJurisdictionLevel() {
 	public void setJurisdictionLevel(JurisdictionLevel jurisdictionLevel) {
 		this.jurisdictionLevel = jurisdictionLevel;
 	}
+
+	public void setCurrentPassword(String currentPassword) {
+		this.currentPassword = currentPassword;
+	}
+
+	public String getCurrentPassword() {
+		return currentPassword;
+	}
+
+	public void setNewPassword(String newPassword) {
+		this.newPassword = newPassword;
+	}
+
+	public String getNewPassword() {
+		return newPassword;
+	}
+
+	public void setConfirmPassword(String confirmPassword) {
+		this.confirmPassword = confirmPassword;
+	}
+
+	public String getConfirmPassword() {
+		return confirmPassword;
+	}
+
+	public void setPasswordStrength(String passwordStrength) {
+		this.passwordStrength = passwordStrength;
+	}
+
+	public String getPasswordStrength() {
+		return passwordStrength;
+	}
+
 }
diff --git a/sormas-api/src/main/java/de/symeda/sormas/api/user/UserFacade.java b/sormas-api/src/main/java/de/symeda/sormas/api/user/UserFacade.java
index 8dd66e15369..85dc1c60d70 100644
--- a/sormas-api/src/main/java/de/symeda/sormas/api/user/UserFacade.java
+++ b/sormas-api/src/main/java/de/symeda/sormas/api/user/UserFacade.java
@@ -52,12 +52,22 @@ public interface UserFacade {
 
 	String resetPassword(String uuid);
 
+	String updateUserPassword(String uuid, String newPassword);
+
+	boolean validateCurrentPassword(String password);
+
+	String checkPasswordStrength(String password);
+
+	boolean isPasswordWeak(String password);
+
+	String generatePassword();
+
 	List<UserDto> getAllAfter(Date date);
 
 	UserDto getByUserName(String userName);
 
 	/**
-	 * 
+	 *
 	 * @param regionRef
 	 *            reference of the region to be filtered for. When this region is null, it is not filtered in this regard.
 	 *            NOTE: some users don't have a region (often users with NATIONAL_USER role, for example). They will
@@ -79,7 +89,7 @@ public interface UserFacade {
 	long count(UserCriteria userCriteria);
 
 	/**
-	 * 
+	 *
 	 * @param district
 	 *            reference of the district to be filtered for. When this district is null, it is not filtered in this regard.
 	 *            NOTE: some users don't have a district (often users with NATIONAL_USER role, for example). They will
@@ -93,7 +103,7 @@ public interface UserFacade {
 	List<UserReferenceDto> getUserRefsByDistrict(DistrictReferenceDto district, Disease limitedDisease, UserRight... userRights);
 
 	/**
-	 * 
+	 *
 	 * @param district
 	 *            reference of the district to be filtered for. When this district is null, it is not filtered in this regard.
 	 *            NOTE: some users don't have a district (often users with NATIONAL_USER role, for example). They will
@@ -160,7 +170,7 @@ List<UserReferenceDto> getUserRefsByInfrastructure(
 	/**
 	 * Retrieves the user rights of the user specified by the passed UUID, or those of the current user if no UUID is specified.
 	 * Requesting the user rights of another user without the rights to view users and user roles results in an AccessDeniedException.
-	 * 
+	 *
 	 * @param userUuid
 	 *            The UUID of the user to request the user rights for
 	 * @return A set containing the user rights associated to all user roles assigned to the user
diff --git a/sormas-api/src/main/java/de/symeda/sormas/api/user/UserPasswordChangeDto.java b/sormas-api/src/main/java/de/symeda/sormas/api/user/UserPasswordChangeDto.java
new file mode 100644
index 00000000000..c907669d19b
--- /dev/null
+++ b/sormas-api/src/main/java/de/symeda/sormas/api/user/UserPasswordChangeDto.java
@@ -0,0 +1,50 @@
+/*
+ * SORMAS® - Surveillance Outbreak Response Management & Analysis System
+ * Copyright © 2016-2023 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ */
+
+package de.symeda.sormas.api.user;
+
+import java.io.Serializable;
+
+public class UserPasswordChangeDto implements Serializable {
+
+	private static final long serialVersionUID = 6269655187128160377L;
+
+	private String uuid;
+	private String newPassword;
+
+	public String getUuid() {
+		return uuid;
+	}
+
+	public void setUuid(String uuid) {
+		this.uuid = uuid;
+	}
+
+	public String getNewPassword() {
+		return newPassword;
+	}
+
+	public void setNewPassword(String newPassword) {
+		this.newPassword = newPassword;
+	}
+
+	public UserPasswordChangeDto(String uuid, String newPassword) {
+		this.uuid = uuid;
+		this.newPassword = newPassword;
+	}
+
+	public UserPasswordChangeDto() {
+	}
+}
diff --git a/sormas-api/src/main/resources/captions.properties b/sormas-api/src/main/resources/captions.properties
index c7bfc406ffc..088c7c1c170 100644
--- a/sormas-api/src/main/resources/captions.properties
+++ b/sormas-api/src/main/resources/captions.properties
@@ -2984,6 +2984,7 @@ TreatmentExport.caseName=Case name
 userNewUser=New user
 userMyUserId=My user ID
 userResetPassword=Create new password
+userGeneratePassword=Generate new password
 userUpdatePasswordConfirmation=Really update password?
 sync=Sync
 syncUsers=Sync Users
@@ -3009,6 +3010,11 @@ User.district=District
 User.community=Community
 User.externalId=External ID
 userRestrictDiseases=Restrict access to specific diseases
+currentPassword=Enter Current Password
+updatePassword=Enter new Password
+confirmPassword=Confirm new Password
+passwordStrength=Password strength
+
 # Vaccination
 vaccinationNewVaccination=New vaccination
 vaccinationNoVaccinationsForPerson=There are no vaccinations for this person
diff --git a/sormas-api/src/main/resources/strings.properties b/sormas-api/src/main/resources/strings.properties
index 05833787bce..8b268811b93 100644
--- a/sormas-api/src/main/resources/strings.properties
+++ b/sormas-api/src/main/resources/strings.properties
@@ -631,6 +631,7 @@ headingLineListing = Line listing
 headingLineListingImport = Line listing import
 headingLocation = Location
 headingLoginFailed = Login failed
+headingUpdatePasswordFailed = Update password failed
 headingMaternalHistory = Maternal history
 headingMedicalInformation = Additional medical information
 headingMissingDateFilter = Missing date filter
@@ -662,6 +663,10 @@ headingOutbreakIn = Outbreak in
 headingPathogenTestsDeleted = Pathogen tests deleted
 headingPaperFormDates = Reception dates of paper form
 headingPersonData = Person data
+currentPassword=Enter Current Password
+updatePassword=Enter new Password
+confirmPassword=Confirm new Password
+passwordStrength=Password strength
 headingPersonInformation = Person information
 headingPersonOccupation = Occupation & education
 headingPickEventGroup = Pick event group
@@ -714,6 +719,7 @@ headingReferCaseFromPointOfEntry = Refer case from point of entry
 headingTreatments = Executed treatments
 headingTreatmentsDeleted = Treatments deleted
 headingUpdatePassword = Update password
+headingChangePassword = Change password
 headingUploadSuccess = Upload Successful
 headingUserData = User data
 headingVaccination = Vaccination
@@ -1330,6 +1336,9 @@ messageIncompleteGpsCoordinates = GPS coordinates are incomplete
 messageIncorrectDateRange = Date from is after date to
 messageExternalMessagesAssigned = The assignee has been changed for all selected messages
 messageLoginFailed = Please check your username and password and try again
+messageNewPasswordDoesNotMatchFailed = New password and Confirm password does not match
+messagePasswordFailed = Incorrect Password Please check your Password and try again
+messageNewPasswordFailed = Password should contain some text, \n some numbers \n and should be more than 8 characters
 messageMissingCases = Please generate some cases before generating contacts
 messageMissingDateFilter = Please fill in both date filter fields
 messageMissingEpiWeekFilter = Please fill in both epi week filter fields
@@ -1359,6 +1368,7 @@ messageNoUsersSelected = You have not selected any users
 messageNoUserSelected = No user has been selected
 messageOutbreakSaved = Outbreak information saved
 messagePasswordReset = User's password was reset
+messagePasswordChange = User's password was changed successfully
 messagePasswordResetEmailLink = A link to reset the password was sent to the user's email
 messagePathogenTestSaved = Pathogen test saved. The classification of its associated case was automatically changed to %s.
 messagePathogenTestSavedShort = Pathogen test saved
@@ -1407,6 +1417,7 @@ messageVaccinationOutsideJurisdictionDeletionDenied = The vaccination outside us
 messageVisitsDeleted = All selected eligible visits have been deleted
 messageVisitsWithWrongStatusNotCancelled = Follow-up visits with CANCELLED or NO FOLLOW-UP status can not be cancelled
 messageVisitsWithWrongStatusNotSetToLost = Follow-up visits with NO FOLLOW-UP status can not be set to lost
+messageWrongCurrentPassword = Wrong Current Password
 messageWrongFileType = Please provide a .csv file containing the data you want to import. It's recommended to use the import template file as a starting point.
 messageWrongTemplateFileType=For %s, please provide a .%s file.
 messageLineListingDisabled = Line listing has been disabled
diff --git a/sormas-app/app/src/main/AndroidManifest.xml b/sormas-app/app/src/main/AndroidManifest.xml
index 18d3de04c70..866ec00ebf0 100644
--- a/sormas-app/app/src/main/AndroidManifest.xml
+++ b/sormas-app/app/src/main/AndroidManifest.xml
@@ -13,6 +13,7 @@
     <uses-feature android:name="android.hardware.location.gps" />
     <uses-permission android:name="android.permission.CAMERA" />
     <uses-permission android:name="android.permission.FOREGROUND_SERVICE"/>
+    <uses-permission android:name="android.permission.ACCESS_COARSE_LOCATION" />
 
     <application
         android:name=".SormasApplication"
@@ -490,6 +491,13 @@
         <activity
             android:name=".barcode.BarcodeActivity" />
 
+        <activity
+                android:name=".login.ChangePasswordActivity"
+                android:launchMode="singleTop"
+                android:screenOrientation="portrait"
+                android:theme="@style/SormasTheme"
+                android:windowSoftInputMode="stateHidden" />
+
         <receiver
             android:name=".SormasBootstrap"
             android:enabled="true"
diff --git a/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/config/ConfigProvider.java b/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/config/ConfigProvider.java
index ca3d83e329f..935467aeeb4 100644
--- a/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/config/ConfigProvider.java
+++ b/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/config/ConfigProvider.java
@@ -312,6 +312,16 @@ public static void setUsernameAndPassword(String username, String password) {
 		}
 	}
 
+	public static void setNewPassword(String password) {
+
+		if (password == null)
+			throw new NullPointerException("password");
+		password = instance.encodeCredential(password, "Password");
+
+		instance.password = password;
+		DatabaseHelper.getConfigDao().createOrUpdate(new Config(KEY_PASSWORD, password));
+	}
+
 	public static void setPin(String pin) {
 		if (pin == null) {
 			throw new NullPointerException("pin");
@@ -621,7 +631,7 @@ public static void setAccessGranted(Boolean accessGranted) {
 	/**
 	 * When no locale is set Locale.getDefault is set.
 	 * (Actually not relevant, because the locale is always updated to the server's, so this is just a fallback).
-	 * 
+	 *
 	 * @return Will never be null.
 	 */
 	public static String getServerLocale() {
diff --git a/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/user/UserDtoHelper.java b/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/user/UserDtoHelper.java
index eeb1ee3e4ba..5afef389521 100644
--- a/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/user/UserDtoHelper.java
+++ b/sormas-app/app/src/main/java/de/symeda/sormas/app/backend/user/UserDtoHelper.java
@@ -31,6 +31,7 @@
 import de.symeda.sormas.app.rest.NoConnectionException;
 import de.symeda.sormas.app.rest.RetroProvider;
 import retrofit2.Call;
+import de.symeda.sormas.api.user.UserPasswordChangeDto;
 
 /**
  * Created by Martin Wahnschaffe on 27.07.2016.
@@ -132,6 +133,17 @@ public static UserReferenceDto toReferenceDto(User ado) {
 		UserReferenceDto dto = new UserReferenceDto(ado.getUuid());
 		return dto;
 	}
+
+	public static Call<String> saveNewPassword(String uuid, String newPassword) throws NoConnectionException {
+
+		return RetroProvider.getUserFacade().saveNewPassword(new UserPasswordChangeDto(uuid, newPassword));
+	}
+
+	public static Call<String> generatePassword() throws NoConnectionException {
+
+		return RetroProvider.getUserFacade().generatePassword();
+	}
+
 	public static boolean isRestrictedToAssignEntities(User user) {
 		if (user != null && !user.getUserRoles().isEmpty()) {
 			return user.getUserRoles().stream().allMatch(UserRole::isRestrictAccessToAssignedEntities);
diff --git a/sormas-app/app/src/main/java/de/symeda/sormas/app/login/ChangePasswordActivity.java b/sormas-app/app/src/main/java/de/symeda/sormas/app/login/ChangePasswordActivity.java
new file mode 100644
index 00000000000..8685c33a182
--- /dev/null
+++ b/sormas-app/app/src/main/java/de/symeda/sormas/app/login/ChangePasswordActivity.java
@@ -0,0 +1,368 @@
+/*
+ * SORMAS® - Surveillance Outbreak Response Management & Analysis System
+ * Copyright © 2016-2018 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ */
+package de.symeda.sormas.app.login;
+
+import static de.symeda.sormas.app.backend.config.ConfigProvider.setNewPassword;
+
+import android.annotation.SuppressLint;
+import android.app.Activity;
+import android.app.AlertDialog;
+import android.content.ClipData;
+import android.content.ClipboardManager;
+import android.content.Context;
+import android.content.DialogInterface;
+import android.content.Intent;
+import android.graphics.Color;
+import android.os.Build;
+import android.os.Bundle;
+import android.util.Log;
+import android.view.LayoutInflater;
+import android.view.View;
+import android.widget.ProgressBar;
+import android.widget.TextView;
+import android.widget.Toast;
+
+import androidx.annotation.NonNull;
+import androidx.annotation.RequiresApi;
+import androidx.core.app.ActivityCompat;
+import androidx.databinding.DataBindingUtil;
+
+import de.symeda.sormas.api.utils.DataHelper;
+import de.symeda.sormas.app.BaseLocalizedActivity;
+import de.symeda.sormas.app.R;
+import de.symeda.sormas.app.backend.config.ConfigProvider;
+import de.symeda.sormas.app.backend.user.UserDtoHelper;
+import de.symeda.sormas.app.core.NotificationContext;
+import de.symeda.sormas.app.core.notification.NotificationHelper;
+import de.symeda.sormas.app.core.notification.NotificationType;
+import de.symeda.sormas.app.databinding.ActivityChangePasswordLayoutBinding;
+import de.symeda.sormas.app.rest.RetroProvider;
+import de.symeda.sormas.app.settings.SettingsActivity;
+import de.symeda.sormas.app.util.NavigationHelper;
+import de.symeda.sormas.app.util.SoftKeyboardHelper;
+import retrofit2.Call;
+import retrofit2.Callback;
+import retrofit2.Response;
+
+@SuppressLint("ResourceType")
+public class ChangePasswordActivity extends BaseLocalizedActivity implements ActivityCompat.OnRequestPermissionsResultCallback, NotificationContext {
+
+	public static final String TAG = ChangePasswordActivity.class.getSimpleName();
+
+	private boolean isAtLeast8 = false;
+	private boolean hasUppercase = false;
+	private boolean hasNumber = false;
+	private boolean hasLowerCaseCharacter = false;
+	private boolean isGood = false;
+	private ActivityChangePasswordLayoutBinding binding;
+	private ProgressBar preloader;
+	private View fragmentFrame;
+	private boolean isPasswordGenerated = false;
+
+	@RequiresApi(api = Build.VERSION_CODES.R)
+	@Override
+	protected void onCreate(Bundle savedInstanceState) {
+		super.onCreate(savedInstanceState);
+		setContentView(R.layout.activity_change_password_layout);
+
+		ChangePasswordViewModel changePasswordViewModel = new ChangePasswordViewModel();
+
+		binding = DataBindingUtil.setContentView(this, R.layout.activity_change_password_layout);
+		binding.setData(changePasswordViewModel);
+
+		binding.changePasswordConfirmPassword.setLiveValidationDisabled(true);
+		binding.changePasswordCurrentPassword.setLiveValidationDisabled(true);
+		binding.changePasswordNewPassword.setLiveValidationDisabled(true);
+
+		preloader = findViewById(R.id.preloader);
+		fragmentFrame = findViewById(R.id.fragment_frame);
+
+		showPreloader();
+
+	}
+
+	@Override
+	public void onPause() {
+
+		super.onPause();
+		SoftKeyboardHelper.hideKeyboard(this, binding.changePasswordCurrentPassword.getWindowToken());
+	}
+
+	@Override
+	protected void onDestroy() {
+
+		hidePreloader();
+		super.onDestroy();
+	}
+
+	@Override
+	protected void onResume() {
+
+		super.onResume();
+	}
+
+	public void backToSettings(View view) {
+
+		Intent intent = new Intent(this, SettingsActivity.class);
+		startActivity(intent);
+	}
+
+	@SuppressLint("ResourceType")
+	public void passwordValidationCheck(View view) {
+
+		String newPassword = binding.changePasswordNewPassword.getValue();
+
+		isAtLeast8 = newPassword.length() >= 8;
+		hasUppercase = newPassword.matches("(.*[A-Z].*)");
+		hasNumber = newPassword.matches("(.*[0-9].*)");
+		hasLowerCaseCharacter = newPassword.matches(".*[a-z].*");
+		if (isAtLeast8 && hasNumber && hasUppercase && hasLowerCaseCharacter) {
+			isGood = true;
+			binding.actionPasswordStrength.setVisibility(view.getVisibility());
+			binding.actionPasswordStrength.setText(R.string.message_password_strong);
+			binding.actionPasswordStrength.setTextColor(Color.parseColor(getString(R.color.successBackground)));
+		} else {
+			binding.actionPasswordStrength.setVisibility(view.getVisibility());
+			binding.actionPasswordStrength.setText(R.string.message_password_weak);
+			NotificationHelper.showNotification(binding, NotificationType.ERROR, R.string.additional_message_passord_weak);
+			binding.actionPasswordStrength.setTextColor(Color.parseColor(getString(R.color.errorBackground)));
+		}
+	}
+
+	@SuppressLint("ResourceType")
+	public void generatePassword(View view) {
+
+		if (DataHelper.isNullOrEmpty(ConfigProvider.getServerRestUrl())) {
+			NavigationHelper.goToSettings(this);
+			return;
+		}
+		try {
+			RetroProvider.connectAsyncHandled(this, true, true, result -> {
+				if (Boolean.TRUE.equals(result)) {
+					try {
+						executeGeneratePasswordCall(UserDtoHelper.generatePassword());
+					} catch (Exception e) {
+						binding.actionPasswordStrength.setVisibility(view.getVisibility());
+						binding.actionPasswordStrength.setText(e.toString());
+						binding.actionPasswordStrength.setTextColor(Color.parseColor(getString(R.color.brightYellow)));
+					}
+					RetroProvider.disconnect();
+				}
+			});
+		} catch (Exception e) {
+			binding.actionPasswordStrength.setVisibility(view.getVisibility());
+			binding.actionPasswordStrength.setText(e.toString());
+			binding.actionPasswordStrength.setTextColor(Color.parseColor(getString(R.color.brightYellow)));
+		}
+	}
+
+	@Override
+	public View getRootView() {
+
+		if (binding != null)
+			return binding.getRoot();
+
+		return null;
+	}
+
+	private void executeGeneratePasswordCall(Call<String> call) {
+
+		try {
+			call.enqueue(new Callback<>() {
+
+				@Override
+				public void onResponse(@NonNull Call<String> call, @NonNull Response<String> response) {
+					if (response.code() != 200) {
+						NotificationHelper.showNotification(binding, NotificationType.ERROR, getString(R.string.message_could_not_generate_password));
+					}
+					var generatedPassword = response.body();
+					binding.changePasswordNewPassword.setValue(generatedPassword);
+					binding.changePasswordConfirmPassword.setValue(generatedPassword);
+					isPasswordGenerated = true;
+					Toast.makeText(getApplicationContext(), getString(R.string.message_password_generated), Toast.LENGTH_SHORT).show();
+				}
+
+				@Override
+				public void onFailure(@NonNull Call<String> call, @NonNull Throwable t) {
+					NotificationHelper.showNotification(binding, NotificationType.ERROR, R.string.message_could_not_generate_password);
+				}
+			});
+		} catch (Exception e) {
+			NotificationHelper.showNotification(binding, NotificationType.ERROR, R.string.message_could_not_generate_password);
+		}
+	}
+
+	private void executeSaveNewPasswordCall(Call<String> call, Activity activity) {
+
+		try {
+			showPreloader();
+
+			call.enqueue(new Callback<String>() {
+
+				@Override
+				public void onResponse(Call<String> call, Response<String> response) {
+					hidePreloader();
+
+					if (response.code() != 200) {
+						NotificationHelper.showNotification(binding, NotificationType.ERROR, R.string.message_could_not_save_password);
+					} else {
+						String message;
+						String title;
+						title = getString(R.string.heading_change_password);
+
+						if (isPasswordGenerated) {
+							String generatedPassword = binding.changePasswordNewPassword.getValue();
+							message = generatedPassword;
+							alertDialog(activity, message, title);
+						} else {
+							message = getString(R.string.message_password_changed);
+							alertDialog(activity, message, title);
+						}
+						NotificationHelper.showNotification(binding, NotificationType.SUCCESS, R.string.message_password_changed);
+					}
+
+				}
+
+				@Override
+				public void onFailure(Call<String> call, Throwable t) {
+					String message = getString(R.string.error_server_connection);
+					String title = getString(R.string.heading_change_password);
+					alertDialog(activity, message, title);
+				}
+			});
+		} catch (Exception e) {
+			Log.d("Call", call.toString());
+		}
+
+	}
+
+	public void alertDialog(Activity activity, String message, String title) {
+
+		AlertDialog.Builder builder = new AlertDialog.Builder(activity);
+		LayoutInflater inflater = activity.getLayoutInflater();
+		View dialogView = inflater.inflate(R.layout.dialog_change_password, null);
+
+		TextView passwordTextView = dialogView.findViewById(R.id.passwordTextView);
+
+		if (isPasswordGenerated) {
+			passwordTextView.setText(message);
+		}
+
+		builder.setTitle(title);
+
+		passwordTextView.setOnClickListener(v -> {
+			// Copy password to clipboard
+			ClipboardManager clipboard = (ClipboardManager) activity.getSystemService(Context.CLIPBOARD_SERVICE);
+			ClipData clip = ClipData.newPlainText(getString(R.string.heading_password), message);
+			clipboard.setPrimaryClip(clip);
+			Toast.makeText(activity, R.string.message_password_copied_to_clipbord, Toast.LENGTH_SHORT).show();
+		});
+
+		builder.setView(dialogView);
+		builder.setCancelable(true);
+		builder.setPositiveButton(activity.getString(R.string.action_ok), new DialogInterface.OnClickListener() {
+
+			@Override
+			public void onClick(DialogInterface dialog, int which) {
+				dialog.dismiss();
+				finish();
+			}
+		});
+
+		AlertDialog dialog = builder.create();
+		dialog.show();
+	}
+
+	/**
+	 * When clicked on submit
+	 **/
+	public void savePassword(View view) {
+
+		binding.changePasswordNewPassword.disableErrorState();
+		binding.changePasswordCurrentPassword.disableErrorState();
+		binding.changePasswordConfirmPassword.disableErrorState();
+
+		if (DataHelper.isNullOrEmpty(ConfigProvider.getServerRestUrl())) {
+			NavigationHelper.goToSettings(this);
+			return;
+		}
+
+		String currentPassword = binding.changePasswordCurrentPassword.getValue();
+		String newPassword = binding.changePasswordNewPassword.getValue();
+		String confirmPassword = binding.changePasswordConfirmPassword.getValue();
+		String configPassword = ConfigProvider.getPassword();
+
+		boolean isValid = true;
+
+		if (currentPassword == null || currentPassword.trim().isEmpty()) {
+			binding.changePasswordCurrentPassword.enableErrorState(R.string.error_current_password_empty);
+			isValid = false;
+		} else if (newPassword == null || newPassword.trim().isEmpty()) {
+			binding.changePasswordNewPassword.enableErrorState(R.string.error_new_password_empty);
+			isValid = false;
+		} else if (confirmPassword == null || confirmPassword.trim().isEmpty()) {
+			binding.changePasswordConfirmPassword.enableErrorState(R.string.error_confirm_password_empty);
+			isValid = false;
+		} else if (!configPassword.equals(currentPassword)) {
+			binding.changePasswordCurrentPassword.enableErrorState(R.string.error_current_password_incorrect);
+			NotificationHelper.showNotification(binding, NotificationType.ERROR, R.string.error_current_password_incorrect);
+			isValid = false;
+		} else if (!newPassword.equals(confirmPassword)) {
+			binding.changePasswordConfirmPassword.enableErrorState(R.string.error_passwords_do_not_match);
+			NotificationHelper.showNotification(binding, NotificationType.ERROR, R.string.error_passwords_do_not_match);
+			isValid = false;
+		}
+
+		if (isValid) {
+			passwordValidationCheck(view);
+		}
+
+		if (isValid && isGood) {
+			RetroProvider.connectAsyncHandled(this, true, true, result -> {
+				if (Boolean.TRUE.equals(result)) {
+					try {
+						executeSaveNewPasswordCall(UserDtoHelper.saveNewPassword(ConfigProvider.getUser().getUuid(), newPassword), this);
+						setNewPassword(newPassword);
+					} catch (Exception e) {
+						binding.actionPasswordStrength.setVisibility(View.VISIBLE);
+						binding.actionPasswordStrength.setText(e.toString());
+						binding.actionPasswordStrength.setTextColor(Color.parseColor(getString(R.color.brightYellow)));
+					}
+					RetroProvider.disconnect();
+				}
+			});
+		}
+	}
+
+	public void showPreloader() {
+
+		if (fragmentFrame != null) {
+			fragmentFrame.setVisibility(View.GONE);
+		}
+		if (preloader != null) {
+			preloader.setVisibility(View.VISIBLE);
+		}
+	}
+
+	public void hidePreloader() {
+
+		if (preloader != null) {
+			preloader.setVisibility(View.GONE);
+		}
+		if (fragmentFrame != null) {
+			fragmentFrame.setVisibility(View.VISIBLE);
+		}
+	}
+}
diff --git a/sormas-app/app/src/main/java/de/symeda/sormas/app/login/ChangePasswordViewModel.java b/sormas-app/app/src/main/java/de/symeda/sormas/app/login/ChangePasswordViewModel.java
new file mode 100644
index 00000000000..a0c3307e79d
--- /dev/null
+++ b/sormas-app/app/src/main/java/de/symeda/sormas/app/login/ChangePasswordViewModel.java
@@ -0,0 +1,55 @@
+/*
+ * SORMAS® - Surveillance Outbreak Response Management & Analysis System
+ * Copyright © 2016-2018 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ */
+
+package de.symeda.sormas.app.login;
+
+import androidx.databinding.BaseObservable;
+
+public class ChangePasswordViewModel extends BaseObservable {
+
+	private String currentPassword;
+	private String newPassword;
+	private String confirmPassword;
+
+	public String getCurrentPassword() {
+
+		return currentPassword;
+	}
+
+	public void setCurrentPassword(String currentPassword) {
+
+		this.currentPassword = currentPassword;
+	}
+
+	public String getNewPassword() {
+
+		return newPassword;
+	}
+
+	public void setNewPassword(String newPassword) {
+
+		this.newPassword = newPassword;
+	}
+
+	public String getConfirmPassword() {
+
+		return confirmPassword;
+	}
+
+	public void setConfirmPassword(String confirmPassword) {
+
+		this.confirmPassword = confirmPassword;
+	}
+}
diff --git a/sormas-app/app/src/main/java/de/symeda/sormas/app/rest/UserFacadeRetro.java b/sormas-app/app/src/main/java/de/symeda/sormas/app/rest/UserFacadeRetro.java
index 790099a2015..95a4b59d658 100644
--- a/sormas-app/app/src/main/java/de/symeda/sormas/app/rest/UserFacadeRetro.java
+++ b/sormas-app/app/src/main/java/de/symeda/sormas/app/rest/UserFacadeRetro.java
@@ -23,6 +23,7 @@
 import retrofit2.http.GET;
 import retrofit2.http.POST;
 import retrofit2.http.Path;
+import de.symeda.sormas.api.user.UserPasswordChangeDto;
 
 /**
  * Created by Martin Wahnschaffe on 07.06.2016.
@@ -37,4 +38,10 @@ public interface UserFacadeRetro {
 
 	@GET("users/uuids")
 	Call<List<String>> pullUuids();
+
+	@POST("users/saveNewPassword")
+	Call<String> saveNewPassword(@Body UserPasswordChangeDto userPasswordChangeDto);
+
+	@GET("users/generatePassword")
+	Call<String> generatePassword();
 }
diff --git a/sormas-app/app/src/main/java/de/symeda/sormas/app/settings/SettingsFragment.java b/sormas-app/app/src/main/java/de/symeda/sormas/app/settings/SettingsFragment.java
index ac66cad5939..ec1fae1de90 100644
--- a/sormas-app/app/src/main/java/de/symeda/sormas/app/settings/SettingsFragment.java
+++ b/sormas-app/app/src/main/java/de/symeda/sormas/app/settings/SettingsFragment.java
@@ -63,6 +63,8 @@
 import de.symeda.sormas.app.util.Callback;
 import de.symeda.sormas.app.util.DataUtils;
 import de.symeda.sormas.app.util.SoftKeyboardHelper;
+import de.symeda.sormas.app.login.ChangePasswordActivity;
+import de.symeda.sormas.api.feature.FeatureType;
 
 /**
  * TODO SettingsFragment should probably not be a BaseLandingFragment, but a BaseFragment
@@ -89,6 +91,7 @@ public View onCreateView(LayoutInflater inflater, @Nullable ViewGroup container,
 
 		binding.settingsServerUrl.setValue(ConfigProvider.getServerRestUrl());
 		binding.changePin.setOnClickListener(v -> changePIN());
+		binding.changePassword.setOnClickListener(v -> changePassword());
 		binding.resynchronizeData.setOnClickListener(v -> repullData());
 		binding.showSyncLog.setOnClickListener(v -> openSyncLog());
 		binding.logout.setOnClickListener(v -> logout());
@@ -157,6 +160,8 @@ public void onResume() {
 		binding.settingsServerUrlInfo.setVisibility(!hasServerUrl() ? View.VISIBLE : View.GONE);
 		binding.settingsServerUrl.setVisibility(!hasServerUrl() || isShowDevOptions() ? View.VISIBLE : View.GONE);
 		binding.changePin.setVisibility(hasUser ? View.VISIBLE : View.GONE);
+		binding.changePassword.setVisibility(
+			hasUser && !DatabaseHelper.getFeatureConfigurationDao().isFeatureDisabled(FeatureType.SELF_PASSWORD_RESET) ? View.VISIBLE : View.GONE);
 		binding.resynchronizeData.setVisibility(hasUser ? View.VISIBLE : View.GONE);
 		binding.showSyncLog.setVisibility(hasUser ? View.VISIBLE : View.GONE);
 		binding.logout.setVisibility(hasUser && isShowDevOptions() ? View.VISIBLE : View.GONE);
@@ -184,6 +189,12 @@ public void changePIN() {
 		startActivity(intent);
 	}
 
+	public void changePassword() {
+
+		Intent intent = new Intent(getActivity(), ChangePasswordActivity.class);
+		startActivity(intent);
+	}
+
 	private void repullData() {
 		checkAndShowUnsynchronizedChangesDialog(() -> showRepullDataConfirmationDialog(), "SYNC");
 	}
diff --git a/sormas-app/app/src/main/res/layout/activity_change_password_layout.xml b/sormas-app/app/src/main/res/layout/activity_change_password_layout.xml
new file mode 100644
index 00000000000..0fda7252b32
--- /dev/null
+++ b/sormas-app/app/src/main/res/layout/activity_change_password_layout.xml
@@ -0,0 +1,180 @@
+<?xml version="1.0" encoding="utf-8"?><!--
+  ~ SORMAS® - Surveillance Outbreak Response Management & Analysis System
+  ~ Copyright © 2016-2018 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+  ~
+  ~ This program is free software: you can redistribute it and/or modify
+  ~ it under the terms of the GNU General Public License as published by
+  ~ the Free Software Foundation, either version 3 of the License, or
+  ~ (at your option) any later version.
+  ~
+  ~ This program is distributed in the hope that it will be useful,
+  ~ but WITHOUT ANY WARRANTY; without even the implied warranty of
+  ~ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  ~ GNU General Public License for more details.
+  ~
+  ~ You should have received a copy of the GNU General Public License
+  ~ along with this program.  If not, see <https://www.gnu.org/licenses/>.
+  -->
+
+<layout xmlns:android="http://schemas.android.com/apk/res/android"
+    xmlns:app="http://schemas.android.com/apk/res-auto"
+    android:descendantFocusability="beforeDescendants"
+    android:id="@+id/base_layout">
+
+    <data>
+
+        <variable
+            name="data"
+            type="de.symeda.sormas.app.login.ChangePasswordViewModel" />
+
+        <import type="de.symeda.sormas.app.component.controls.ControlButtonType" />
+    </data>
+
+    <ScrollView
+        android:layout_width="match_parent"
+        android:layout_height="match_parent">
+
+        <FrameLayout
+            android:layout_width="match_parent"
+            android:layout_height="wrap_content">
+
+            <LinearLayout
+                android:layout_width="match_parent"
+                android:layout_height="wrap_content"
+                android:orientation="vertical"
+                android:layout_gravity="center_vertical"
+                android:gravity="center_horizontal"
+                android:paddingLeft="@dimen/parentLayoutHorizontalPadding"
+                android:paddingRight="@dimen/parentLayoutHorizontalPadding"
+                android:focusable="true"
+                android:focusableInTouchMode="true">
+
+                <TextView
+                    android:layout_marginTop="32dp"
+                    android:id="@+id/changePasswordHeader"
+                    android:layout_width="match_parent"
+                    android:layout_height="wrap_content"
+                    android:gravity="center"
+                    android:text="@string/heading_change_password"
+                    style="@style/LoginSignInText" />
+
+                <TextView
+                    android:id="@+id/signInSubHeader"
+                    android:layout_width="match_parent"
+                    android:gravity="center"
+                    android:layout_height="wrap_content"
+                    android:text="@string/info_change_password"
+                    style="@style/LoginSignInTagLineText" />
+
+                <de.symeda.sormas.app.component.controls.ControlPasswordField
+                    android:id="@+id/change_password_current_password"
+                    style="@style/ControlSingleColumnStyle"
+                    app:caption="@string/caption_enter_current_password"
+                    app:description="@string/caption_enter_current_password"
+                    app:required="true"
+                    android:layout_marginTop="32dp"
+                    app:hint="@string/hint_enter_current_password"
+                    app:labelCaption="@string/caption_enter_current_password"
+                    app:value="@={data.currentPassword}"
+
+                    />
+
+                <de.symeda.sormas.app.component.controls.ControlPasswordField
+                    android:id="@+id/change_password_new_password"
+                    style="@style/ControlSingleColumnStyle"
+                    android:layout_marginTop="10dp"
+                    android:hint="@string/caption_enter_new_password"
+                    app:caption="@string/caption_enter_new_password"
+                    app:description="@string/caption_enter_new_password"
+                    app:labelCaption="@string/caption_enter_new_password"
+                    app:hint="@string/caption_enter_new_password"
+                    app:required="true"
+                    app:value="@={data.newPassword}" />
+
+                <de.symeda.sormas.app.component.controls.ControlPasswordField
+                    android:id="@+id/change_password_confirm_password"
+                    style="@style/ControlSingleColumnStyle"
+                    app:description="@string/caption_confirm_new_password"
+                    app:caption="@string/caption_confirm_new_password"
+                    app:required="true"
+                    app:hint="@string/hint_enter_confirm_new_password"
+                    app:inputType="textPassword"
+                    app:hintEnabled="false"
+                    android:layout_marginTop="10dp"
+                    app:labelCaption="@string/caption_confirm_new_password"
+                    app:value="@={data.confirmPassword}" />
+
+                <Button
+                    android:id="@+id/btn_changePassword"
+                    android:layout_width="match_parent"
+                    android:layout_height="wrap_content"
+                    android:text="@string/action_change_password"
+                    style="@style/PrimaryButtonStyle"
+                    android:onClick="savePassword" />
+
+                <RelativeLayout
+                    android:layout_width="match_parent"
+                    android:layout_height="wrap_content"
+
+                    android:orientation="horizontal">
+                    <!---for error-->
+                    <TextView
+
+                        android:id="@+id/action_password_strength"
+                        android:visibility="gone"
+                        style="@style/LinkButtonStyle"
+                        android:layout_width="match_parent"
+                        android:layout_height="match_parent"
+                        android:text="@string/action_strength_password"
+                        android:textAlignment="viewStart" />
+
+                </RelativeLayout>
+
+                <RelativeLayout
+                    android:layout_width="match_parent"
+                    android:layout_height="wrap_content"
+                    android:orientation="horizontal">
+
+                    <Button
+                        android:id="@+id/action_generatePassword"
+                        android:layout_alignParentEnd="true"
+                        android:layout_width="wrap_content"
+                        android:layout_height="wrap_content"
+                        android:text="@string/action_generate_password"
+                        style="@style/SubtleButtonStyle"
+                        android:onClick="generatePassword" />
+
+                </RelativeLayout>
+
+
+                <LinearLayout
+                    android:layout_width="match_parent"
+                    android:layout_height="match_parent"
+                    android:layout_gravity="bottom"
+                    android:layout_marginTop="48dp"
+                    android:orientation="horizontal">
+
+                    <TextView
+                        android:id="@+id/action_backToSettings"
+                        style="@style/LinkButtonStyle"
+                        android:layout_width="wrap_content"
+                        android:layout_height="wrap_content"
+                        android:onClick="backToSettings"
+                        android:text="@string/action_back_to_settings"
+                        android:textAlignment="viewStart" />
+
+                </LinearLayout>
+
+            </LinearLayout>
+
+            <include
+                android:id="@+id/notification_frame"
+                layout="@layout/activity_root_notification_layout"
+                android:layout_width="match_parent"
+                android:layout_height="wrap_content" />
+
+        </FrameLayout>
+
+    </ScrollView>
+
+</layout>
\ No newline at end of file
diff --git a/sormas-app/app/src/main/res/layout/dialog_change_password.xml b/sormas-app/app/src/main/res/layout/dialog_change_password.xml
new file mode 100644
index 00000000000..a0b8e123f76
--- /dev/null
+++ b/sormas-app/app/src/main/res/layout/dialog_change_password.xml
@@ -0,0 +1,38 @@
+<?xml version="1.0" encoding="utf-8"?>
+<!--
+  ~ SORMAS® - Surveillance Outbreak Response Management & Analysis System
+  ~ Copyright © 2016-2018 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+  ~
+  ~ This program is free software: you can redistribute it and/or modify
+  ~ it under the terms of the GNU General Public License as published by
+  ~ the Free Software Foundation, either version 3 of the License, or
+  ~ (at your option) any later version.
+  ~
+  ~ This program is distributed in the hope that it will be useful,
+  ~ but WITHOUT ANY WARRANTY; without even the implied warranty of
+  ~ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+  ~ GNU General Public License for more details.
+  ~
+  ~ You should have received a copy of the GNU General Public License
+  ~ along with this program.  If not, see <https://www.gnu.org/licenses/>.
+  -->
+
+<LinearLayout xmlns:android="http://schemas.android.com/apk/res/android"
+    android:orientation="vertical"
+    android:layout_width="match_parent"
+    android:layout_height="wrap_content"
+    android:padding="16dp">
+
+    <TextView
+        android:id="@+id/passwordTextView"
+        android:layout_width="wrap_content"
+        android:layout_height="wrap_content"
+        android:text="@string/password_change_success"
+        android:textSize="18sp"
+        android:textColor="@android:color/black"
+        android:padding="8dp"
+        android:background="?attr/selectableItemBackground"
+        android:clickable="true"
+        android:focusable="true" />
+
+</LinearLayout>
diff --git a/sormas-app/app/src/main/res/layout/fragment_settings_layout.xml b/sormas-app/app/src/main/res/layout/fragment_settings_layout.xml
index af484c7e9aa..9f533b4ec61 100644
--- a/sormas-app/app/src/main/res/layout/fragment_settings_layout.xml
+++ b/sormas-app/app/src/main/res/layout/fragment_settings_layout.xml
@@ -71,6 +71,16 @@
                 app:buttonType="@{ControlButtonType.LINE_SECONDARY}"
                 app:rounded="true" />
 
+            <de.symeda.sormas.app.component.controls.ControlButton
+                android:id="@+id/change_password"
+                android:layout_width="match_parent"
+                android:layout_height="wrap_content"
+                android:layout_marginBottom="32dp"
+                android:text="@string/action_change_password"
+                app:buttonType="@{ControlButtonType.LINE_SECONDARY}"
+                app:rounded="true"
+                />
+
             <de.symeda.sormas.app.component.controls.ControlButton
                 android:id="@+id/resynchronize_data"
                 android:layout_width="match_parent"
diff --git a/sormas-app/app/src/main/res/values/strings.xml b/sormas-app/app/src/main/res/values/strings.xml
index 0c33c478b52..9c9fea7e9b4 100644
--- a/sormas-app/app/src/main/res/values/strings.xml
+++ b/sormas-app/app/src/main/res/values/strings.xml
@@ -285,7 +285,7 @@
     <string name="caption_sync_pushed">%1$s/%2$s pushed</string>
     <string name="caption_sync_deleted">%1$s deleted</string>
     <string name="caption_event_search_field">ID, title, description</string>
-`
+
     <string name="confirmation_action">Are you sure you want to do this?</string>
     <string name="confirmation_delete">Are you sure you want to delete this record?</string>
     <string name="confirmation_pick_gps">Are you in this place right now?</string>
@@ -722,5 +722,45 @@
     <string name="value_environment_name_unknown">Environment Name N/A</string>
     <string name="rapidEntry">Use rapid event participant entry</string>
     <string name="value_environment_media_unknown">Environment Media N/A</string>
+    <string name="title_activity_change_password">ChangePasswordActivity</string>
+    <string name="prompt_email">Email</string>
+    <string name="prompt_password">Password</string>
+    <string name="action_sign_in">Sign in or register</string>
+    <string name="action_sign_in_short">Sign in</string>
+    <string name="welcome">"Welcome !"</string>
+    <string name="invalid_username">Not a valid username</string>
+    <string name="invalid_password">Password must be >5 characters</string>
+    <string name="login_failed">"Login failed"</string>
+    <string name="hint_enter_current_password">"Enter Current Password"</string>
+    <string name="hint_enter_new_password">"Enter New Password"</string>
+    <string name="hint_enter_confirm_new_password">"Enter Confirm Password"</string>
+    <string name="caption_enter_current_password">"Enter Current Password"</string>
+    <string name="caption_enter_new_password">"Enter new Password"</string>
+    <string name="caption_confirm_new_password">"Enter Confirm Password"</string>
+    <string name="error_current_password_empty">Current Password Cannot be Empty</string>
+    <string name="error_new_password_empty">New Password Cannot be Empty</string>
+    <string name="error_confirm_password_empty">Confirm Password Cannot be Empty</string>
+    <string name="error_current_password_incorrect">Current Password is Incorrect</string>
+    <string name="error_passwords_do_not_match">Passwords do not match</string>
+    <string name="error_title">Error</string>
+    <string name="success_title">Success</string>
+    <string name="password_change_success">User\'s password was changed successfully</string>
+    <string name="action_change_password">Change Password</string>
+    <string name="action_generate_password">Generate Password</string>
+    <string name="action_strength_password">Password Strength</string>
+    <string name="description_new_password">New Password</string>
+    <string name="description_confirm_password">Confirm Password</string>
+    <string name="heading_change_password">Change Password</string>
+    <string name="info_change_password">To change your Password you will <b>need to enter your SORMAS user password.</b></string>
+    <string name="message_password_changed">Password has been successfully changed.</string>
+    <string name="message_password_weak">Password Strength is Weak</string>
+    <string name="message_password_moderate">Password Strength is Moderate</string>
+    <string name="message_password_strong">Password Strength is strong</string>
+    <string name="message_could_not_generate_password">Could not generate password</string>
+    <string name="message_could_not_save_password">Could not save password</string>
+    <string name="additional_message_passord_weak">Password should contain some text, some numbers and should be more than 8 characters</string>
+    <string name="message_password_copied_to_clipbord">"Password copied to clipboard"</string>
+    <string name="message_password_generated">"Password Generated"</string>
+    <string name="heading_password">"Password"</string>
 
 </resources>
diff --git a/sormas-app/app/src/main/res/values/styles.xml b/sormas-app/app/src/main/res/values/styles.xml
index 82bd6125add..7dac2d812ae 100644
--- a/sormas-app/app/src/main/res/values/styles.xml
+++ b/sormas-app/app/src/main/res/values/styles.xml
@@ -413,6 +413,16 @@
         <item name="android:background">@drawable/selector_button_primary</item>
         <item name="android:elevation">@dimen/primaryButtonElevation</item>
     </style>
+    
+    <style name="GenerateButtonStyle">
+        <item name="android:layout_height">@dimen/primaryButtonHeight</item>
+        <item name="android:gravity">center</item>
+        <item name="android:paddingLeft">@dimen/buttonHorizontalPadding</item>
+        <item name="android:paddingRight">@dimen/buttonHorizontalPadding</item>
+        <item name="android:textColor">@color/lightBlue</item>
+        <item name="android:background">@android:color/transparent</item>
+        <item name="android:elevation">@dimen/primaryButtonElevation</item>
+    </style>
 
     <style name="EmptyListHintStyle">
         <item name="android:paddingTop">@dimen/parentLayoutVerticalPadding</item>
diff --git a/sormas-backend/src/main/java/de/symeda/sormas/backend/user/KeycloakService.java b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/KeycloakService.java
index 80cc8aa939d..9968e8ca927 100644
--- a/sormas-backend/src/main/java/de/symeda/sormas/backend/user/KeycloakService.java
+++ b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/KeycloakService.java
@@ -61,6 +61,7 @@
 import de.symeda.sormas.api.user.UserRight;
 import de.symeda.sormas.api.utils.DataHelper.Pair;
 import de.symeda.sormas.backend.common.ConfigFacadeEjb.ConfigFacadeEjbLocal;
+import de.symeda.sormas.backend.user.event.PasswordChangeEvent;
 import de.symeda.sormas.backend.user.event.PasswordResetEvent;
 import de.symeda.sormas.backend.user.event.SyncUsersFromProviderEvent;
 import de.symeda.sormas.backend.user.event.UserCreateEvent;
@@ -233,6 +234,78 @@ public void handlePasswordResetEvent(@Observes PasswordResetEvent passwordResetE
 		}
 	}
 
+	public boolean validateCurrentPassword(String username, String password) {
+
+		Optional<String> oidcJson = ConfigProvider.getConfig().getOptionalValue("sormas.backend.security.oidc.json", String.class);
+
+		if (oidcJson.isEmpty()) {
+			logger.warn(
+				"Undefined KEYCLOAK configuration for sormas.backend.security.oidc.json. Configure the property or disable the KEYCLOAK authentication provider.");
+			return false;
+		}
+
+		String keycloakJsonConfig = oidcJson.get();
+		String secret = JsonPath.read(keycloakJsonConfig, OIDC_SECRET);
+		String realm = JsonPath.read(keycloakJsonConfig, OIDC_REALM);
+		String clientId = "sormas-backend";
+		String serverUrl = JsonPath.read(keycloakJsonConfig, OIDC_SERVER_URL);
+
+		try {
+
+			Keycloak keycloak = KeycloakBuilder.builder()
+				.serverUrl(serverUrl)
+				.realm(realm)
+				.clientId(clientId)
+				.clientSecret(secret)
+				.username(username)
+				.password(password)
+				.grantType("password")
+				.build();
+
+			try {
+				keycloak.tokenManager().getAccessToken();
+				logger.info("Token retrieved Successfully");
+				keycloak.tokenManager().logout();
+				return true;
+			} catch (Exception e) {
+				logger.error(
+					"Token retrieval failed...Kindly Check if you have turned on Direct access grant"
+						+ " on 'sormas-backend' client  on the Keycloak console",
+					e);
+				throw e;
+			}
+		} catch (Exception e) {
+			logger.error("Authentication attempt failed", e);
+		}
+		return false;
+	}
+
+	public void handlePasswordChangeEvent(@Observes PasswordChangeEvent passwordChangeEvent) {
+		Optional<String> oidcJson = ConfigProvider.getConfig().getOptionalValue("sormas.backend.security.oidc.json", String.class);
+
+		if (oidcJson.isEmpty()) {
+			logger.warn(
+				"Undefined KEYCLOAK configuration for sormas.backend.security.oidc.json. Configure the property or disable the KEYCLOAK authentication provider.");
+			return;
+		}
+		User user = passwordChangeEvent.getUser();
+		String password = user.getPassword();
+		String username = user.getUserName();
+
+		Optional<Keycloak> keycloak = Optional.of(keycloakInstance);
+		Optional<UserRepresentation> userRepresentation = getUserByUsername(keycloak.get(), username);
+		if (userRepresentation.isEmpty()) {
+			logger.warn("Cannot find user or email for user with username {} to reset the password", user.getUserName());
+			return;
+		}
+
+		Optional<Keycloak> adminClient = getKeycloakInstance();
+		adminClient.ifPresent(value -> userRepresentation.ifPresent(existing -> {
+			setCredentialsForChangePassword(existing, password, user.getSeed());
+			value.realm(REALM_NAME).users().get(existing.getId()).update(existing);
+		}));
+	}
+
 	public void handleSyncUsersFromProviderEvent(@Observes SyncUsersFromProviderEvent syncUsersFromProviderEvent) {
 		Optional<Keycloak> keycloak = getKeycloakInstance();
 		if (keycloak.isEmpty()) {
@@ -465,6 +538,25 @@ private void setCredentials(UserRepresentation userRepresentation, String passwo
 		userRepresentation.setCredentials(singletonList(credential));
 	}
 
+	private void setCredentialsForChangePassword(UserRepresentation userRepresentation, String password, String salt) {
+
+		JsonObjectBuilder secretData = Json.createObjectBuilder();
+		secretData.add("value", password);
+		secretData.add("salt", Base64.getEncoder().encodeToString(salt.getBytes()));
+
+		JsonObjectBuilder credentialData = Json.createObjectBuilder();
+		credentialData.add("hashIterations", 1);
+		credentialData.add("algorithm", "sormas-sha256");
+
+		CredentialRepresentation credential = new CredentialRepresentation();
+		credential.setType(CredentialRepresentation.PASSWORD);
+		// let user use the password he set
+		credential.setTemporary(false);
+		credential.setSecretData(secretData.build().toString());
+		credential.setCredentialData(credentialData.build().toString());
+		userRepresentation.setCredentials(singletonList(credential));
+	}
+
 	private Optional<Keycloak> getKeycloakInstance() {
 		return Optional.ofNullable(keycloakInstance);
 	}
diff --git a/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserFacadeEjb.java b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserFacadeEjb.java
index ff85ead49dd..778c54ab09a 100644
--- a/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserFacadeEjb.java
+++ b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserFacadeEjb.java
@@ -151,6 +151,8 @@
 import de.symeda.sormas.backend.util.ModelConstants;
 import de.symeda.sormas.backend.util.QueryHelper;
 import de.symeda.sormas.backend.util.RightsAllowed;
+import de.symeda.sormas.backend.util.PasswordValidator;
+import de.symeda.sormas.backend.user.event.PasswordChangeEvent;
 
 @Stateless(name = "UserFacade")
 public class UserFacadeEjb implements UserFacade {
@@ -165,6 +167,8 @@ public class UserFacadeEjb implements UserFacade {
 	@EJB
 	private UserService userService;
 	@EJB
+	private KeycloakService keycloakService;
+	@EJB
 	private LocationFacadeEjbLocal locationFacade;
 	@EJB
 	private RegionService regionService;
@@ -201,6 +205,8 @@ public class UserFacadeEjb implements UserFacade {
 	@Inject
 	private Event<PasswordResetEvent> passwordResetEvent;
 	@Inject
+	private Event<PasswordChangeEvent> passwordChangeEvent;
+	@Inject
 	private Event<SyncUsersFromProviderEvent> syncUsersFromProviderEventEvent;
 
 	public static UserDto toDto(User source) {
@@ -1190,6 +1196,50 @@ public List<UserRight> getUserRights(String userUuid) {
 		}
 	}
 
+	@Override
+	@PermitAll
+	public boolean validateCurrentPassword(String password) {
+
+		User user = userService.getCurrentUser();
+		if (user != null) {
+			AuthProvider authProvider = AuthProvider.getProvider(configFacade);
+			if (KEYCLOAK.equalsIgnoreCase(authProvider.getName())) {
+				return keycloakService.validateCurrentPassword(user.getUserName(), password);
+			}
+			return DataHelper.equal(user.getPassword(), PasswordHelper.encodePassword(password, user.getSeed()));
+		}
+		return false;
+	}
+
+	@PermitAll
+	public String checkPasswordStrength(String password) {
+		return PasswordValidator.checkPasswordStrength(password);
+	}
+
+	@PermitAll
+	@Override
+	public boolean isPasswordWeak(String password) {
+		return !PasswordValidator.isStrongPassword(password);
+	}
+
+	@PermitAll
+	@Override
+	public String updateUserPassword(String uuid, String password) {
+		String updatePassword = userService.updatePassword(uuid, password);
+		AuthProvider authProvider = AuthProvider.getProvider(configFacade);
+		if (KEYCLOAK.equalsIgnoreCase(authProvider.getName())) {
+			passwordChangeEvent.fire(new PasswordChangeEvent(userService.getByUuid(uuid)));
+		}
+		return updatePassword;
+	}
+
+	@PermitAll
+	@Override
+	public String generatePassword() {
+
+		return userService.generatePassword();
+	}
+
 	public interface JurisdictionOverEntitySubqueryBuilder<ADO extends AbstractDomainObject> {
 
 		Subquery<ADO> buildSubquery(CriteriaBuilder cb, CriteriaQuery<?> cq, Root<User> userRoot);
diff --git a/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserService.java b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserService.java
index 0d88ceb7795..6bafd296a82 100644
--- a/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserService.java
+++ b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/UserService.java
@@ -110,7 +110,7 @@ public User createUser() {
 
 	/**
 	 * Fetches a use from the DB by its username. The check is done case-insensitive.
-	 * 
+	 *
 	 * @param userName
 	 *            The username in any casing.
 	 * @return The corresponding User object from the DB.
@@ -188,7 +188,7 @@ public List<User> getAllByDistrictsAndUserRights(List<District> districts, Colle
 	 * Loads users filtered by combinable filter conditions.<br />
 	 * Condition combination if parameter is set:<br />
 	 * {@code ((regionUuids & districtUuids & filterByJurisdiction & userRoles) | includeSupervisors) & activeOnly}
-	 * 
+	 *
 	 * @see #createCurrentUserJurisdictionFilter(CriteriaBuilder, From)
 	 * @param regionUuids
 	 * @param districtUuids
@@ -654,6 +654,28 @@ public static String setNewPassword(User user) {
 		return password;
 	}
 
+	public String generatePassword() {
+
+		return PasswordHelper.createPass(12);
+	}
+
+	public String updatePassword(String userUuid, String password) {
+
+		User user = getByUuid(userUuid);
+		if (user == null && password == null) {
+			return null;
+		}
+		if (user == null) {
+			throw new IllegalArgumentException("User not found for UUID: " + userUuid);
+		}
+		logger.info(user.getUserName());
+
+		user.setPassword(PasswordHelper.encodePassword(password, user.getSeed()));
+		ensurePersisted(user);
+
+		return password;
+	}
+
 	public Predicate buildCriteriaFilter(UserCriteria userCriteria, CriteriaBuilder cb, Root<User> from) {
 
 		Predicate filter = null;
diff --git a/sormas-backend/src/main/java/de/symeda/sormas/backend/user/event/PasswordChangeEvent.java b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/event/PasswordChangeEvent.java
new file mode 100644
index 00000000000..af4af75c0fa
--- /dev/null
+++ b/sormas-backend/src/main/java/de/symeda/sormas/backend/user/event/PasswordChangeEvent.java
@@ -0,0 +1,40 @@
+/*
+ * SORMAS® - Surveillance Outbreak Response Management & Analysis System
+ * Copyright © 2016-2020 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ */
+
+package de.symeda.sormas.backend.user.event;
+
+import de.symeda.sormas.backend.user.User;
+
+/**
+ * Event fired whenever a user's password is changed.
+ *
+ * @author David Oteng
+ * @since 31-October-2024
+ */
+public class PasswordChangeEvent {
+
+	private final User user;
+	public PasswordChangeEvent(User user) {
+		this.user = user;
+	}
+
+	public User getUser() {
+		return user;
+	}
+
+}
diff --git a/sormas-backend/src/main/java/de/symeda/sormas/backend/util/PasswordValidator.java b/sormas-backend/src/main/java/de/symeda/sormas/backend/util/PasswordValidator.java
new file mode 100644
index 00000000000..72699b863ed
--- /dev/null
+++ b/sormas-backend/src/main/java/de/symeda/sormas/backend/util/PasswordValidator.java
@@ -0,0 +1,66 @@
+/*******************************************************************************
+ * SORMAS® - Surveillance Outbreak Response Management & Analysis System
+ * Copyright © 2016-2018 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ *******************************************************************************/
+package de.symeda.sormas.backend.util;
+
+public class PasswordValidator {
+
+	private PasswordValidator() {
+
+		throw new UnsupportedOperationException("This is a utility class and cannot be instantiated");
+	}
+
+	public static String checkPasswordStrength(String password) {
+
+		boolean strongPassword = isStrongPassword(password);
+
+		if (strongPassword) {
+			return "Password is Strong";
+		} else {
+			return "Password is Weak";
+		}
+	}
+
+	public static boolean isStrongPassword(String password) {
+
+		if (password == null) {
+			throw new IllegalArgumentException("Password cannot be null");
+		}
+
+		boolean isLengthValid = password.length() >= 8;
+		boolean hasDigit = hasDigits(password);
+		boolean hasCapitalLetter = hasCapitalLetter(password);
+		boolean hasLowercaseLetter = hasLowercaseLetter(password);
+
+		return isLengthValid && hasDigit && hasCapitalLetter && hasLowercaseLetter;
+	}
+
+	private static boolean hasDigits(String password) {
+
+		return password.chars().anyMatch(Character::isDigit);
+	}
+
+	private static boolean hasCapitalLetter(String password) {
+
+		return password.chars().anyMatch(Character::isUpperCase);
+	}
+
+	private static boolean hasLowercaseLetter(String password) {
+
+		return password.chars().anyMatch(Character::isLowerCase);
+	}
+}
diff --git a/sormas-backend/src/test/java/de/symeda/sormas/backend/TestDataCreator.java b/sormas-backend/src/test/java/de/symeda/sormas/backend/TestDataCreator.java
index 44a8e777823..96c8c4238b8 100644
--- a/sormas-backend/src/test/java/de/symeda/sormas/backend/TestDataCreator.java
+++ b/sormas-backend/src/test/java/de/symeda/sormas/backend/TestDataCreator.java
@@ -146,6 +146,7 @@
 import de.symeda.sormas.api.user.UserRoleDto;
 import de.symeda.sormas.api.user.UserRoleReferenceDto;
 import de.symeda.sormas.api.utils.DataHelper;
+import de.symeda.sormas.api.utils.PasswordHelper;
 import de.symeda.sormas.api.vaccination.VaccinationDto;
 import de.symeda.sormas.api.visit.VisitDto;
 import de.symeda.sormas.api.visit.VisitStatus;
@@ -2543,4 +2544,23 @@ public RDP(RegionReferenceDto region, DistrictReferenceDto district, PointOfEntr
 			this.pointOfEntry = pointOfEntry;
 		}
 	}
+
+	public User createTestUser() {
+
+		User user = new User();
+		user.setUserName("testuser");
+		user.setFirstName("Test");
+		user.setLastName("User");
+		user.setUuid(DataHelper.createUuid());
+		String password = "password";
+		String seed = "seed";
+		String encodedPassword = PasswordHelper.encodePassword(password, seed);
+		user.setPassword(encodedPassword);
+		user.setSeed(seed);
+		user.setActive(true);
+		user.setUserRoles(new HashSet<>(Arrays.asList(getUserRole(DefaultUserRole.ADMIN), getUserRole(DefaultUserRole.NATIONAL_USER))));
+
+		beanTest.getUserService().persist(user);
+		return user;
+	}
 }
diff --git a/sormas-backend/src/test/java/de/symeda/sormas/backend/user/UserFacadeEjbTest.java b/sormas-backend/src/test/java/de/symeda/sormas/backend/user/UserFacadeEjbTest.java
index 59ed2aa4e71..ff21681a39b 100644
--- a/sormas-backend/src/test/java/de/symeda/sormas/backend/user/UserFacadeEjbTest.java
+++ b/sormas-backend/src/test/java/de/symeda/sormas/backend/user/UserFacadeEjbTest.java
@@ -22,6 +22,7 @@
 import static org.hamcrest.Matchers.nullValue;
 import static org.junit.jupiter.api.Assertions.assertEquals;
 import static org.junit.jupiter.api.Assertions.assertFalse;
+import static org.junit.jupiter.api.Assertions.assertNotEquals;
 import static org.junit.jupiter.api.Assertions.assertNotNull;
 import static org.junit.jupiter.api.Assertions.assertNull;
 import static org.junit.jupiter.api.Assertions.assertThrows;
@@ -480,4 +481,78 @@ void getUserRights() {
 		loginWith(nationalAdmin);
 		assertThrows(EntityNotFoundException.class, () -> getUserFacade().getUserRights("12345"));
 	}
+
+	@Test
+	public void testUpdateUserPassword() {
+
+		// Arrange
+		User testUser = creator.createTestUser();
+
+		String newPassword = "newPassword";
+		String currentPassword = testUser.getPassword();
+		String uuid = testUser.getUuid();
+		String result = getUserFacade().updateUserPassword(uuid, newPassword);
+
+		// Assert
+		assertEquals(newPassword, result);
+
+		// Verify the password was updated in the database
+		User updatedUser = getUserService().getByUuid(uuid);
+
+		assertNotEquals(currentPassword, updatedUser.getPassword()); // Password should be different
+		UserDto updatedUserDto = getUserFacade().getByUuid(uuid);
+
+		loginWith(updatedUserDto); // Login again with changed password
+		assertTrue(getUserFacade().validateCurrentPassword(newPassword)); // Validate the new password
+
+	}
+
+	@Test
+	public void testGeneratePassword() {
+
+		// Act
+		String result = getUserFacade().generatePassword();
+
+		// Assert
+		assertNotNull(result);
+		assertFalse(result.isEmpty());
+	}
+
+	@Test
+	void testValidatePasswordValid() {
+
+		User user = creator.createTestUser();
+		// Act
+		UserDto loggedInUser = getUserFacade().getByUuid(user.getUuid());
+		loginWith(loggedInUser);
+		boolean result = getUserFacade().validateCurrentPassword("password"); // Use plain password for validation
+
+		// Assert
+		assertTrue(result);
+	}
+
+	@Test
+	void testValidatePasswordInvalid() {
+
+		// Act
+		boolean result = getUserFacade().validateCurrentPassword("password");
+
+		// Assert
+		assertFalse(result);
+	}
+
+	@Test
+	void testCheckPasswordStrengthStrong() {
+
+		String result = getUserFacade().checkPasswordStrength("Verystrongassword134$");
+		assertEquals("Password is Strong", result);
+	}
+
+	@Test
+	void testCheckPasswordStrengthWeak() {
+
+		String result = getUserFacade().checkPasswordStrength("weak");
+		assertEquals("Password is Weak", result);
+	}
+
 }
diff --git a/sormas-rest/src/main/java/de/symeda/sormas/rest/resources/UserResource.java b/sormas-rest/src/main/java/de/symeda/sormas/rest/resources/UserResource.java
index fac1ce36b3a..ad63dabe1df 100644
--- a/sormas-rest/src/main/java/de/symeda/sormas/rest/resources/UserResource.java
+++ b/sormas-rest/src/main/java/de/symeda/sormas/rest/resources/UserResource.java
@@ -36,6 +36,7 @@
 import de.symeda.sormas.api.user.UserReferenceWithTaskNumbersDto;
 import de.symeda.sormas.api.user.UserRight;
 import io.swagger.v3.oas.annotations.parameters.RequestBody;
+import de.symeda.sormas.api.user.UserPasswordChangeDto;
 
 /**
  * @see <a href="https://jersey.java.net/documentation/latest/">Jersey documentation</a>
@@ -97,4 +98,18 @@ public List<UserRight> getUserRightsForCurrentUser() {
 	public List<UserRight> getUserRights(@PathParam("uuid") String uuid) {
 		return FacadeProvider.getUserFacade().getUserRights(uuid);
 	}
+
+	@POST
+	@Path("/saveNewPassword")
+	public String saveNewPassword(UserPasswordChangeDto userPasswordChangeDto) {
+
+		return FacadeProvider.getUserFacade().updateUserPassword(userPasswordChangeDto.getUuid(), userPasswordChangeDto.getNewPassword());
+	}
+
+	@GET
+	@Path("/generatePassword")
+	public String generatePassword() {
+
+		return FacadeProvider.getUserFacade().generatePassword();
+	}
 }
diff --git a/sormas-ui/src/main/java/de/symeda/sormas/ui/Menu.java b/sormas-ui/src/main/java/de/symeda/sormas/ui/Menu.java
index f3c8976dd29..dd5284feca1 100644
--- a/sormas-ui/src/main/java/de/symeda/sormas/ui/Menu.java
+++ b/sormas-ui/src/main/java/de/symeda/sormas/ui/Menu.java
@@ -53,6 +53,8 @@
 import de.symeda.sormas.ui.utils.CommitDiscardWrapperComponent;
 import de.symeda.sormas.ui.utils.CssStyles;
 import de.symeda.sormas.ui.utils.VaadinUiUtil;
+import static de.symeda.sormas.ui.UiUtil.permitted;
+import de.symeda.sormas.api.feature.FeatureType;
 
 /**
  * Responsive navigation menu presenting a list of available views to the user.
@@ -145,6 +147,11 @@ private void showSettingsPopup() {
 		CommitDiscardWrapperComponent<UserSettingsForm> component =
 			ControllerProvider.getUserController().getUserSettingsComponent(() -> window.close());
 
+		if (permitted(FeatureType.SELF_PASSWORD_RESET)) {
+			Button resetPasswordButton = ControllerProvider.getUserController().createUpdatePasswordButton();
+			component.getButtonsPanel().addComponent(resetPasswordButton, 0);
+		}
+
 		window.setContent(component);
 		UI.getCurrent().addWindow(window);
 	}
diff --git a/sormas-ui/src/main/java/de/symeda/sormas/ui/user/UpdatePasswordForm.java b/sormas-ui/src/main/java/de/symeda/sormas/ui/user/UpdatePasswordForm.java
new file mode 100644
index 00000000000..c1eaaa438a2
--- /dev/null
+++ b/sormas-ui/src/main/java/de/symeda/sormas/ui/user/UpdatePasswordForm.java
@@ -0,0 +1,68 @@
+/*******************************************************************************
+ * SORMAS® - Surveillance Outbreak Response Management & Analysis System
+ * Copyright © 2016-2018 Helmholtz-Zentrum für Infektionsforschung GmbH (HZI)
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program. If not, see <https://www.gnu.org/licenses/>.
+ *******************************************************************************/
+package de.symeda.sormas.ui.user;
+
+import static de.symeda.sormas.ui.utils.LayoutUtil.fluidRowLocs;
+import static de.symeda.sormas.ui.utils.LayoutUtil.loc;
+
+import com.vaadin.v7.ui.PasswordField;
+
+import de.symeda.sormas.api.user.UserDto;
+import de.symeda.sormas.ui.utils.AbstractEditForm;
+
+public class UpdatePasswordForm extends AbstractEditForm<UserDto> {
+
+	private static final long serialVersionUID = 1L;
+	private static final String OLD_PASSWORD = "oldPassword";
+	private static final String NEW_PASSWORD = "newPassword";
+	private static final String CONFIRM_PASSWORD = "updateConfirmPassword";
+
+	//@formater:off
+	private static final String HTML_LAYOUT = loc(OLD_PASSWORD)
+		+ fluidRowLocs(UserDto.PASSWORD)
+		+ loc(NEW_PASSWORD)
+		+ fluidRowLocs(UserDto.NEW_PASSWORD)
+		+ loc(CONFIRM_PASSWORD)
+		+ fluidRowLocs(UserDto.CONFIRM_PASSWORD);
+
+	//@formatter:on
+	PasswordField currentPassword;
+	PasswordField newPassword;
+	PasswordField confirmPassword;
+
+	public UpdatePasswordForm() {
+		super(UserDto.class, UserDto.I18N_PREFIX);
+
+		setWidth(480, Unit.PIXELS);
+	}
+
+	@Override
+	protected void addFields() {
+
+		currentPassword = addField(UserDto.PASSWORD, PasswordField.class);
+		newPassword = addField(UserDto.NEW_PASSWORD, PasswordField.class);
+		confirmPassword = addField(UserDto.CONFIRM_PASSWORD, PasswordField.class);
+		setRequired(true, UserDto.PASSWORD, UserDto.NEW_PASSWORD, UserDto.CONFIRM_PASSWORD);
+	}
+
+	@Override
+	protected String createHtmlLayout() {
+
+		return HTML_LAYOUT;
+	}
+}
diff --git a/sormas-ui/src/main/java/de/symeda/sormas/ui/user/UserController.java b/sormas-ui/src/main/java/de/symeda/sormas/ui/user/UserController.java
index 16c4f86b022..ead50b7ae61 100644
--- a/sormas-ui/src/main/java/de/symeda/sormas/ui/user/UserController.java
+++ b/sormas-ui/src/main/java/de/symeda/sormas/ui/user/UserController.java
@@ -20,6 +20,7 @@
 import java.util.ArrayList;
 import java.util.Collection;
 import java.util.List;
+import java.util.Objects;
 import java.util.Set;
 import java.util.function.Consumer;
 import java.util.stream.Collectors;
@@ -64,9 +65,16 @@
 import de.symeda.sormas.ui.utils.ConfirmationComponent;
 import de.symeda.sormas.ui.utils.CssStyles;
 import de.symeda.sormas.ui.utils.VaadinUiUtil;
+import static de.symeda.sormas.ui.utils.CssStyles.LABEL_CRITICAL;
+import static de.symeda.sormas.ui.utils.CssStyles.LABEL_POSITIVE;
+import de.symeda.sormas.ui.ControllerProvider;
+import de.symeda.sormas.ui.UserProvider;
 
 public class UserController {
 
+	private boolean isGeneratePassword = false;
+	private Window popUpWindow;
+
 	public void create() {
 		CommitDiscardWrapperComponent<UserEditForm> userCreateComponent = getUserCreateComponent();
 		Window window = VaadinUiUtil.showModalPopupWindow(userCreateComponent, I18nProperties.getString(Strings.headingCreateNewUser));
@@ -454,4 +462,142 @@ public void disableAllSelectedItems(Collection<UserDto> selectedRows, UserGrid u
 				});
 		}
 	}
+
+	public void showUpdatePassword(String userUuid, String userEmail, String password) {
+
+		FacadeProvider.getUserFacade().updateUserPassword(userUuid, password);
+		if (isGeneratePassword) {
+			if (StringUtils.isBlank(userEmail) || AuthProvider.getProvider(FacadeProvider.getConfigFacade()).isDefaultProvider()) {
+				showPasswordResetInternalSuccessPopup(password);
+			} else {
+				showPasswordResetExternalSuccessPopup();
+			}
+		} else {
+			showPasswordChangeInternalSuccessPopup(I18nProperties.getString(Strings.messagePasswordChange));
+		}
+		isGeneratePassword = false;
+	}
+
+	private void showPasswordChangeInternalSuccessPopup(String passwordSuccessMessage) {
+
+		showPopupWindow(I18nProperties.getString(Strings.headingChangePassword), passwordSuccessMessage, null, true);
+	}
+
+	private void showPopupWindow(String header, String message, Integer width, Boolean closeable) {
+
+		VerticalLayout layout = new VerticalLayout();
+		Label messageLabel = new Label(message);
+		messageLabel.addStyleName(CssStyles.H2);
+		layout.addComponent(messageLabel);
+		Window popupWindow = VaadinUiUtil.showPopupWindow(layout);
+
+		popupWindow.setCaption(header);
+		if (width != null) {
+			popupWindow.setWidth(width, Unit.PIXELS);
+		}
+
+		layout.setMargin(true);
+		if (closeable) {
+			popupWindow.addCloseListener(event -> popUpWindow.close());
+		}
+	}
+
+	public Button createUpdatePasswordButton() {
+
+		return ButtonHelper.createIconButton(Captions.userResetPassword, VaadinIcons.UNLOCK, new ClickListener() {
+
+			private static final long serialVersionUID = 1L;
+
+			@Override
+			public void buttonClick(ClickEvent event) {
+				popUpWindow = VaadinUiUtil.showPopupWindow(getUpdatePasswordComponent());
+				popUpWindow.setCaption(I18nProperties.getString(Strings.headingChangePassword));
+			}
+		}, ValoTheme.BUTTON_LINK);
+	}
+
+	public Button generatePasswordButton() {
+
+		return ButtonHelper.createIconButton(Captions.userGeneratePassword, VaadinIcons.UNLOCK, new ClickListener() {
+
+			private static final long serialVersionUID = 1L;
+			final UpdatePasswordForm form = new UpdatePasswordForm();
+
+			@Override
+			public void buttonClick(ClickEvent event) {
+				isGeneratePassword = true;
+
+				String generatedPassword = FacadeProvider.getUserFacade().generatePassword();
+				form.currentPassword.setCaption(generatedPassword);
+				form.confirmPassword.setCaption(generatedPassword);
+			}
+		}, ValoTheme.BUTTON_LINK);
+	}
+
+	public CommitDiscardWrapperComponent<UpdatePasswordForm> getUpdatePasswordComponent() {
+
+		Label passwordStrengthDesc = new Label();
+		UpdatePasswordForm form = new UpdatePasswordForm();
+		UserDto user = FacadeProvider.getUserFacade().getByUuid(Objects.requireNonNull(UserProvider.getCurrent()).getUuid());
+		form.setValue(user);
+
+		final CommitDiscardWrapperComponent<UpdatePasswordForm> component = new CommitDiscardWrapperComponent<>(form, form.getFieldGroup());
+
+		form.newPassword.setValidationVisible(false);
+		form.confirmPassword.setValidationVisible(false);
+		form.currentPassword.setValidationVisible(false);
+
+		form.newPassword.addBlurListener(event -> {
+			String newPassword = form.newPassword.getValue();
+			if (Objects.nonNull(newPassword)) {
+				if (FacadeProvider.getUserFacade().isPasswordWeak(newPassword)) {
+					passwordStrengthDesc.setStyleName(LABEL_CRITICAL);
+				} else {
+					passwordStrengthDesc.setStyleName(LABEL_POSITIVE);
+				}
+				passwordStrengthDesc.setValue(FacadeProvider.getUserFacade().checkPasswordStrength(newPassword));
+			}
+			form.newPassword.setValidationVisible(true);
+		});
+
+		form.confirmPassword.addBlurListener(event -> {
+			form.confirmPassword.setValidationVisible(true);
+		});
+
+		form.currentPassword.addBlurListener(event -> {
+			form.currentPassword.setValidationVisible(true);
+		});
+
+		component.addDiscardListener(() -> popUpWindow.close());
+
+		component.addCommitListener(() -> {
+			if (!form.getFieldGroup().isModified()) {
+				UserDto changedUser = form.getValue();
+				if (!Objects.equals(changedUser.getConfirmPassword(), changedUser.getNewPassword())) {
+					Notification.show(I18nProperties.getString(Strings.messageNewPasswordDoesNotMatchFailed), Notification.Type.ERROR_MESSAGE);
+				} else if (!FacadeProvider.getUserFacade().validateCurrentPassword(changedUser.getCurrentPassword())) {
+					Notification.show(I18nProperties.getString(Strings.messageWrongCurrentPassword), Notification.Type.ERROR_MESSAGE);
+				} else if (FacadeProvider.getUserFacade().isPasswordWeak(changedUser.getNewPassword())) {
+					Notification.show(I18nProperties.getString(Strings.messageNewPasswordFailed), Notification.Type.ERROR_MESSAGE);
+				} else {
+					showUpdatePassword(user.getUuid(), user.getUserEmail(), changedUser.getNewPassword());
+				}
+			}
+		});
+
+		Button generatePasswordButton = ControllerProvider.getUserController().generatePasswordButton();
+		generatePasswordButton.addClickListener((ClickListener) event -> {
+			String generatedPassword = FacadeProvider.getUserFacade().generatePassword();
+			form.newPassword.setValue(generatedPassword);
+			form.confirmPassword.setValue(generatedPassword);
+
+			form.newPassword.setValidationVisible(true);
+			form.confirmPassword.setValidationVisible(true);
+		});
+
+		component.getButtonsPanel().addComponent(generatePasswordButton, 0);
+		component.addComponent(passwordStrengthDesc, 1);
+
+		return component;
+	}
 }