Has anyone noticed that users can request a password reset link to their email and receive it even if they're not a user validated for portal usage? The emailed url returns as invalid (rightly so). Will I have to write a workflow extension to validate that the user is allowed to access the portal?
The other thing I noticed is that a generic error appears when you write in an email address that doesn't exist in CRM. A validation error doesn't appear to the user...it just sends them to the "We're sorry, but something went wrong." page. Any way to fix this or is this a Microsoft ticket?