Just tacking this on here. What’s weird to me is that the system is using Identifier First and reroutes the user to the reset-password page immediately after they enter their email-address, so it doesn’t even provide them the option of entering their password. And this is NOT for a non-SSO email address, it’s using Username-Password-Authentication.