Hello Arij,
My understanding is if you have endpoint A, B and C. You only want passwords to update on endpoints A and B on a password reset and not C? On the accounts tab, there are options for you to look at to see if these are something that would work out for you.
A option I see is "Account is sensitive and cannot be delegated". Would this be something that could be possible for you? If these options aren't what you are looking for, I can look into other suggestions for you.
Thank you,
Andrew Nguyen