To include or exclude admin you can add an additional check for the admin group session variable to the IF statement.
You might have to do it manually. The trigger would probably be a comparison between the posted password vs the one saved in the database to see if they have changed.