diff --git a/src/app/Http/Controllers/ChangePasswordController.php b/src/app/Http/Controllers/ChangePasswordController.php
new file mode 100644
index 0000000..bbc2a7f
--- /dev/null
+++ b/src/app/Http/Controllers/ChangePasswordController.php
@@ -0,0 +1,28 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Http\Controllers;
+
+use App\Aws\CognitoIdentityProvider\AdminSetUserPassword\AdminSetUserPassword;
+use App\Aws\CognitoIdentityProvider\AdminSetUserPassword\AdminSetUserPasswordPayload;
+use App\Http\Requests\ChangePasswordRequest;
+use App\Models\User;
+use Illuminate\Http\RedirectResponse;
+use Illuminate\Support\Facades\Auth;
+use Illuminate\Support\Facades\Session;
+
+final class ChangePasswordController
+{
+    public function __invoke(ChangePasswordRequest $request, AdminSetUserPassword $adminSetUserPassword, User $user): RedirectResponse
+    {
+        $payload = AdminSetUserPasswordPayload::createForPermanent($request->username(), $request->password());
+        $adminSetUserPassword->execute($payload);
+
+        Auth::login($user);
+        Session::regenerate();
+        Session::regenerateToken();
+
+        return redirect()->route('dashboard');
+    }
+}
diff --git a/src/app/Http/Requests/ChangePasswordRequest.php b/src/app/Http/Requests/ChangePasswordRequest.php
new file mode 100644
index 0000000..08f04ef
--- /dev/null
+++ b/src/app/Http/Requests/ChangePasswordRequest.php
@@ -0,0 +1,28 @@
+<?php
+
+declare(strict_types=1);
+
+namespace App\Http\Requests;
+
+use Illuminate\Foundation\Http\FormRequest;
+
+final class ChangePasswordRequest extends FormRequest
+{
+    public function rules(): array
+    {
+        return [
+            'username' => ['required', 'string'],
+            'password' => ['required', 'string'],
+        ];
+    }
+
+    public function username(): string
+    {
+        return $this->input('username');
+    }
+
+    public function password(): string
+    {
+        return $this->input('password');
+    }
+}
diff --git a/src/resources/views/force-password-change.blade.php b/src/resources/views/force-password-change.blade.php
new file mode 100644
index 0000000..06baae3
--- /dev/null
+++ b/src/resources/views/force-password-change.blade.php
@@ -0,0 +1,14 @@
+@extends('layouts.app')
+
+@section('title', 'パスワード変更')
+
+@section('content')
+    <h1>パスワード変更</h1>
+
+    <form action="{{ route('login') }}" method="POST">
+        @csrf
+        <p><label>ユーザー名: <input type="text" name="username"></label></p>
+        <p><label>パスワード: <input type="password" name="password"></label></p>
+        <button type="submit">ログイン</button>
+    </form>
+@endsection
diff --git a/src/routes/web.php b/src/routes/web.php
index 0c8b843..fd3f838 100644
--- a/src/routes/web.php
+++ b/src/routes/web.php
@@ -26,6 +26,10 @@
 Route::view('/login', 'login')->name('loginForm');
 Route::post('/login', LoginController::class)->name('login');
 
+Route::group(['middleware' => 'signed'], static function () {
+    Route::view('/change-password/{user}', 'change-password')->name('changePasswordForm');
+    Route::post('/change-password/{user}', LogoutController::class)->name('changePassword');
+});
 
 Route::group(['middleware' => 'auth'], static function () {
     Route::view('/dashboard', 'dashboard')->name('dashboard');