diff --git a/userManagment/static/userManagment/userManagment.js b/userManagment/static/userManagment/userManagment.js
index 72c0adcce..3d3fe4054 100644
--- a/userManagment/static/userManagment/userManagment.js
+++ b/userManagment/static/userManagment/userManagment.js
@@ -305,11 +305,15 @@ app.controller('modifyUser', function ($scope, $http) {
             firstName: firstName,
             lastName: lastName,
             email: email,
-            passwordByPass: password,
             securityLevel: $scope.securityLevel,
             twofa: $scope.twofa
         };
 
+        // Only include password if it's provided and not empty
+        if (password && password.trim()) {
+            data.passwordByPass = password;
+        }
+
         var config = {
             headers: {
                 'X-CSRFToken': getCookie('csrftoken')
diff --git a/userManagment/views.py b/userManagment/views.py
index 11b07926e..0a95d49e6 100644
--- a/userManagment/views.py
+++ b/userManagment/views.py
@@ -408,14 +408,16 @@ def saveModifications(request):
                 json_data = json.dumps(data_ret)
                 return HttpResponse(json_data)
 
-            token = hashPassword.generateToken(accountUsername, data['passwordByPass'])
-            password = hashPassword.hash_password(data['passwordByPass'])
+            # Only update password if a new one is provided
+            if 'passwordByPass' in data and data['passwordByPass'] and data['passwordByPass'].strip():
+                token = hashPassword.generateToken(accountUsername, data['passwordByPass'])
+                password = hashPassword.hash_password(data['passwordByPass'])
+                user.password = password
+                user.token = token
 
             user.firstName = firstName
             user.lastName = lastName
             user.email = email
-            user.password = password
-            user.token = token
             user.type = 0
             user.twoFA = twofa