The term SSO gets used for a few different authentication methods. This has caused confusion a few times in the past.
If you are using the Discourse implementation of SSO, then email verification is controlled by the require_activation
SSO parameter. Set that parameter to "false"
to bypass email verification.