Before you modify values in your ldap directory, first make sure that you have permission to do so. In openldap adding the following acl in slap.conf will allow the user to modify their own userpassword.
access to attr=userPassword
by self write
by anonymous auth
by * none