When a user applies to join your organization, they must choose one of their verified identities to associate with this membership — either an institutional login via SSO, a Google login, or other email address. This allows administrators to establish confidence that the user is who they say they are, and binds the security of their access to your data with a particular identity provider.