Prevent users from changing their password

The site does not use LDAP and users are created manually. Some users are changing the passwords of the users/groups of users and causing challenges for the PACS admins. We tried many options by removing the privileges on CPACS and UV admin with no success, After escalating to L4 we found out that this cannot happen unless the customer uses LDAP.