Teams and Businesses

Update allowed domains in 1Password Business when provisioning using SCIM

Learn how to update the allowed domains for your 1Password account if your team uses 1Password SCIM Bridge with an identity provider.

If your company provisions team members using 1Password SCIM Bridge and an identity provider, and you need to add or change a company domain, you can.

You’ll need to update the allowed domains in your 1Password account, then add or update the email addresses for your team in your identity provider. After you’re done, instruct team members to change the email addresses for their accounts on

You can update the allowed domains in your 1Password Business account if you’re an owner, administrator, or part of a group with the Invite & Remove People permission.

Step 1: Update your allowed domains on

To update the allowed domains for your team:

  1. Sign in to your account on
  2. Click Invitations in the sidebar.

    If you don't see Invitations in the sidebar, ask your team administrator for help.

  3. Click View Link and Options in the sign-up link section.
  4. Enter the new allowed domain or update the existing one, then click Save Domain List.

    If you're entering multiple domains, separate them with commas.

Add or update the allowed domains from the sign-up link section

Step 2: Update email addresses in your identity provider


You need to update your allowed domains on before you update email addresses in your identity provider. If you don’t, team members won’t be able to use their new email addresses with your team’s 1Password account.

After your allowed domains have been updated on, you can update the email addresses for your team members in your identity provider.

1Password will then email your team members and ask them to confirm the change.

If you need help updating email addresses, contact your identity provider.

The email from 1Password to confirm the changed email address

Step 3: Instruct team members to change their email addresses on

Everything in your 1Password account is end-to-end encrypted in accordance with the 1Password security model. The encryption key is bound tightly with the email address for each account, so team members will need to finish changing their email addresses on

Instruct each team member to follow these steps to change the email address for their account:

  1. Check your email for a message to change the email address for your 1Password account.
  2. Click Change Email Address. A new browser tab or window will open.
  3. Sign in to your account on using your old email address.
  4. You’ll see a message that your team administrator is changing your email address. Click Confirm Email Address. 1Password will then email you a confirmation code.
  5. Enter your confirmation code and 1Password account password, then click Change Email Address.
After you sign in to your account, click Confirm Email address.

Get help

If a team member can’t sign in to their 1Password account using their updated email address, make sure the domain was added to 1Password first, before their email address was updated in your identity provider.

If they still can’t sign in with their updated email address, contact 1Password Support for help.

Learn more

Still need help?

If this article didn't answer your question, contact 1Password Support.