Skip to main content
Associated email domains let users sign in to your Vantage tenant with their corporate email — even if they don’t yet have a Vantage account. On first sign-in through the External Identity Provider, Vantage creates the account automatically and adds it to the tenant. For example, if you associate abbyy.com with your tenant, any user with an @abbyy.com email who authenticates successfully through the configured External Identity Provider is signed in to the tenant. If no user record exists in the tenant yet, Vantage creates one.
Associated email domains work only when an External Identity Provider is configured for the tenant. See Setting up an External Identity Provider.
You can associate multiple domains with a single tenant. A single domain can also be associated with multiple tenants — in that case, the user is prompted to choose which tenant to sign in to.
To add an associated email domain, see Setting up an External Identity Provider for a tenant. Newly auto-created users are assigned any roles configured under default roles for new users.

Authentication flow with an associated domain

When a user signs in with an email address that matches an associated domain:
  1. The user enters their email on the Vantage sign-in page.
  2. If the domain is associated with a single tenant, Vantage routes the user to that tenant. If the domain is associated with multiple tenants, Vantage prompts the user to choose one.
  3. Vantage redirects the user to the configured External Identity Provider to authenticate.
  4. After a successful sign-in at the provider, Vantage redirects the user back. If no account exists yet for that user in the tenant, Vantage creates one automatically and signs them in.

Authentication

Sign-in flows and OAuth 2.0 / SAML 2.0 options

Setting up an External Identity Provider

Overview of OAuth 2.0 and SAML 2.0 provider setup

Setting up an External Identity Provider for a tenant

Connect the provider to your Vantage tenant

Tenant login URL

Tenant-specific sign-in URLs