Can the reset password on the user’s behalf from User Management will be added back? That was pretty handy for me as a Georgia DOT ProjectWise Administrator. The City of Atlanta had a security breach about 3 years ago where lots of data was stolen. The state government took measures to prevent this from happening to them. So, GDOTs IT created filters that will intercept any emails with links coming from outside of the DOT. It also intercepts the emails that has the keyword "Password" in the body of the email. Whenever I would trigger the reset from User Management, the user typically receives it with no issues at all vs using the CONNECT Client's link.
A feature to trigger a password reset on a user's behalf is planned for development in the coming months. In the mean time, perhaps you could whitelist our domain?
The best way to get full control over your IMS security (specifically password policy, including MFA) is via federation with Bentley IMS. Users are auto-provisioned via JIT provisioning, and automatically lose access once you disable or remove them from your IdP, so federation increases security while reducing your maintenance overhead time. And for the end user, it's one less password to remember (...or you to reset.)
There is more information on our federation landing page, and a very small service request form there to start the engagement.