you can remove the password columns from the page, edit the server validation behavior to remove the validation for the password fields and edit the update record server behavior to remove the bindings for the user password column
you would then need to create the separate password update page. On the password update page add the password update form and the Update recordset server behavior.
in the update behavior, use the UserID session as the ID Value same as on the user update page.