What must be done before users can successfully use Single Sign-On?

For Single Sign-On (SSO) to function correctly, it is essential to establish trust between the identity provider (IdP) and the service provider (in this case, DocuSign). Claiming a domain is a critical step in this process. By claiming a domain, an organization verifies ownership and establishes a secure link to its users' identities. This action ensures that the SSO setup recognizes the users accessing the services under that claimed domain as valid members of the organization.

Once the domain is successfully claimed, the necessary configurations for SSO can be completed, which include setting up authentication settings and linking the IdP to the service provider. Only after these steps can users utilize the benefits of Single Sign-On, enabling seamless access to their accounts without needing to log in repeatedly.

The other options discuss various user-related activities or requirements that, while potentially important for other aspects of user account management, do not specifically pertain to the foundational requirement for enabling Single Sign-On functionality.