If Windows password integration is enabled in the offline authentication policy, users can authenticate with only a Windows user name and an RSA SecurID passcode. This feature causes RSA Authentication Manager to save users’ Windows passwords, which become invalid if the Windows password has been changed. You can avoid a failed logon attempt by clearing the saved copy of the user's Windows password.
In the Security Console, go to the Home page.
Use Quick Search to find the user.
Select the user whose cached passwords you want to clear.
Under User Profile, click Authentication Settings.
Select the Clear cached copy of selected user's Windows credential checkbox to clear a cached version of the user's Windows password.