Skip to main content
Associated email domains are used if the user does not have an account in Vantage, but has an account in the External Identity Provider with which they can log in to Vantage. This domain should be a part of your users’ email addresses, such as “abbyy.com”. When logging in using an e-mail address from the specified domain, users will be proposed to authenticate for that tenant even if the account with the specified email does not yet exist in the tenant. If the account does not yet exist in the tenant, it will be created automatically upon the first login.
Note: Several domains can be specified for a single tenant.
to configure associated domains using Vantage UI, see Setting up an External Identity Provider for a tenant.

Authorization Flow with Associated Domains

If an associated domain is configured in the tenant, the authorization looks like:
  1. The user logs in to Vantage using their email. The same email domain can be specified for different tenants. In this case, the user is prompted to choose which tenant to log in to.
  2. If an External Identity Provider is used, the user is redirected to the login page of the External Identity Provider.
  3. After a successful login, the user is redirected to Vantage and logged into the account created for them in the tenant.