We are on Premise also and saw the issue on 2023.1, the difference we saw was any browser would popup password expired message even if the local domain account was still valid. Work around so far is reset to blank password and the end user is able to log back in.
I chatted with Epicor at Insights and they told me it had to do with SQL security settings for user may need to change pw to never expire at SQL?
I haven’t tried this on the latest versions, but this used to occur when the site wasn’t in the Local Intranet Zone in Internet Properties (possibly because you are using an external cert rather than the internal one). It can on Edge, by going to More Tools → Internet Options - Security Tab, Local Intranet clicking on sites and adding your site. You may also need to check the User Auth element of the Custom Level in case something has been set by a domain policy. I think it should be Automatic Log-on only in Intranet zone.
That worked for me!
I forgot to mention, for me it was the domain.
If I put in the domain\username combo then it works fine.
Fixed in 2023.1 Version.