This site appears to successfully describe how to save a password using NTLM, RPC over HTTP to an exchange server. The essential part is describe in the comments. Use Wildcard Domain Names for the network password management domain names. That’s the only way I have gotten it working, but hey, it works!