-
Control Mechanism: User invitations via the UI and user creation processes via the External API are validated against the "Allowed Account Domains" list defined under the account.
-
Restrictions: Any attempts to create or invite users with email addresses from domains outside the allowlist will be blocked.
-
Administration: Domain definitions are managed via the Account -> Advanced Settings screen and are accessible only to users with Uber Admin privileges.
-
Exemptions: Users logging in via SSO and LDAP are exempt from this domain validation.
-
Auditing: Failed user invitation and creation attempts involving unauthorized domains are recorded in the Audit Logs.
Note: If no "Allowed Account Domains" are defined for the account, the existing user creation and invitation behavior remains unchanged.
