Before you can configure SAML single sign-on (SSO), you need to add and verify at least one email domain for your organization. This ensures that only users with authorized email addresses can sign in via SSO.
Why domains are required for SSO
Email domains serve as the foundation for SSO authentication in Ad Reform:
Security: Only users with email addresses from your verified domains can authenticate via your organization's SSO configuration
Routing: When a user enters their email at the SSO login page, Ad Reform uses the domain to determine which organization's SSO configuration to use
Just-in-Time provisioning: New users can only be automatically created if their email domain is verified for your organization
Adding a domain
Navigate to your Organization Settings
Go to the SSO tab
In the Domains section, click Add Domain
Enter your email domain (e.g., example.com or company.co.uk)
Click Save
The domain will be added with a Pending status until it's verified.
Domain format
Enter just the domain portion of email addresses (e.g., example.com, not user@example.com)
Domains are case-insensitive
You can add multiple domains if your organization uses more than one email domain
Domain verification
After adding a domain, it must be verified by the Ad Reform team before it can be used with SSO. This verification step ensures that:
Your organization legitimately owns or controls the domain
The domain isn't already claimed by another organization
SSO configurations are properly secured
Verification process
After adding your domain, contact support@adreform.com to request verification
Our team will verify your domain ownership (this may involve confirming your organization's email domain through your account details or additional verification steps)
Once verified, the domain status will change from Pending to Verified
You can now use this domain with your SAML SSO configuration
Note: Domain verification is typically completed within 1-2 business days. Contact support@adreform.com if you need expedited verification.
Managing domains
Viewing your domains
From the SSO settings page, you can see all domains associated with your organization, including:
Domain name
Status (Pending or Verified)
When it was added
When it was verified (if applicable)
Removing a domain
To remove a domain, contact support@adreform.com and our team can help.
Multiple domains
Organizations can have multiple verified domains. This is useful if your company uses:
Multiple email domains (e.g., company.com and company.co.uk)
Acquired company domains
Different domains for different departments
Each domain must be individually added and verified. All verified domains will work with your SSO configuration.
Troubleshooting
"Your email domain is not authorized for SSO access"
This error appears when:
The user's email domain hasn't been added to your organization
The domain is still pending verification
The domain was removed from your organization
Fix: Ensure the email domain is added and verified in your SSO settings.
Domain shows as "Pending"
A pending domain hasn't been verified yet. Contact support@adreform.com to request verification.
Can't add a domain
If you receive an error when adding a domain:
"Domain is already in use": Another organization has already claimed this domain. Contact support@adreform.com if you believe this is an error.
"Invalid domain format": Check that you're entering a valid domain format (e.g., example.com)
Next steps
Once you have at least one verified domain, you can set up SAML SSO.
Need help?
If you have questions about domain setup or verification, contact our support team at support@adreform.com.