@vasilis you may need to add to your connector’s profile mapper:
profile['email_verified'] = true;
to ensure that all users logging in through AD will have verified emails. I believe this would be a safe assumption since it’s normal your AD accounts to be provisioned only for your company’s users. Please let me know if that is the case and if this helps! We can take a look at alternate solutions if this does not work for you.