I am looking for some advice. I will be deploying a community member site where the customer will be providing me with 3,000 users. I am using DNN 9 community edition. I have purchased Bulk User Manger which works very well. Bulk User Manger will allow me to import all the users and send them an email with login information. My question what is the best work flow for email. It appears I basically have two options.
1. I can enable the ability to retrieve emails and set the password type to clear. This will allow the Bulk Manager to create the password and send it to the new user once I run the import process. I have tested this and it works correctly. I did have to add Membership:Password token to the Public Email body template in the language editor.
2. Leave the password type as hashed and allow for the password to be reset. I have tried this as well and the issue I am running into here is that no matter what I try when the email arrives and I click on the link to reset the password it advised that the link is expired.
This site is basically an information site with a forum for the users. There is no financial transactions taking place on the site. What are my security risks with option one?
In addition I would like to create a better formatted email that is being sent to the new registered user. Is it possible to create a HTML based email with the embedded tokens to be sent as the New Registrant Public Body Email? Do you create all the HTML and paste it into the line where it is listed in the language section?
Thanks in advance for any responses.