Views:

Step 1. Enable LMP SAML Function

Contact Trend Micro Technical Support to Enable SAML Integration function in Licensing Management Platform.

Once enabled, go to Administration > SAML Authentication.

Step 2. Create New Application in Azure

In the Azure Admin Portal, go to Enterprise applications.
Click New application.

^{Click the image to enlarge.}
Click Create your own application.

^{Click the image to enlarge.}
Enter the name of the app.
Select Integrate any other application you don't find in the gallery (Non-gallery).
Click Create.

Step 3. Configure the app

Provide specific users and groups access to the application

On the created Enterprise Application, click Assign users and groups
Click Add user/group.
Select the desired users or groups.
Click Assign.

Enable users to sign into their application using their Azure AD credentials

Under Set up single sign on, click Get started.
Configure the following:
Azure (Enterprise Application):
1. Basic SAML Configuration > Click Edit
  1. Identifier (Entity ID) - Copy the Service Provider entity ID from LMP.
  2. Reply URL (Assertion Consumer Service URL) - Copy the Single Sign On URL (ACS) from LMP.
2. Attributes & Claims > Click Edit
  1. FED_ID - Add new claim > Name: FED_ID > Source attribute: <LMP Account Name>
3. SAML Certificates > Click Edit
  1. Signing Option > Select Sign SAML response and assertion.
  2. Signing Algorithm > SHA-256.
  3. Download the Certificate (Base64). :
    Rename the .cer to .cert.:
    Upload it to Certificate under Identity Provider (IdP) Settings of LMP
4. Set up the created application
  1. Login URL - Copy to IdP Single Sign URL of LMP.
  2. Azure ID identifier - IdP entity ID / issuer of LMP.
Test single-sign on with the created application.

Keywords: use Azure as IDP for LMP,integrate MS Azure to LMP,using Azure as IDP for LMP,changing the SAML configuration for LMP

Configuring SAML Integration with Microsoft Azure as Identity Provider for Licensing Management Platform (LMP)

Product / Version includes:

Licensing Management PlatformAll

Last updated: 2023/05/03

Solution ID: KA-0010954

Category: Configure

Summary

This article shows how to set up Microsoft Azure AD as an Identity Provider by configuring SAML Integration in Licensing Management Platform.

Step 1. Enable LMP SAML Function

Contact Trend Micro Technical Support to Enable SAML Integration function in Licensing Management Platform.

Once enabled, go to Administration > SAML Authentication.

Step 2. Create New Application in Azure

In the Azure Admin Portal, go to Enterprise applications.
Click New application.

^{Click the image to enlarge.}
Click Create your own application.

^{Click the image to enlarge.}
Enter the name of the app.
Select Integrate any other application you don't find in the gallery (Non-gallery).
Click Create.

Step 3. Configure the app

Provide specific users and groups access to the application

On the created Enterprise Application, click Assign users and groups
Click Add user/group.
Select the desired users or groups.
Click Assign.

Enable users to sign into their application using their Azure AD credentials

Under Set up single sign on, click Get started.
Configure the following:
Azure (Enterprise Application):
1. Basic SAML Configuration > Click Edit
  1. Identifier (Entity ID) - Copy the Service Provider entity ID from LMP.
  2. Reply URL (Assertion Consumer Service URL) - Copy the Single Sign On URL (ACS) from LMP.
2. Attributes & Claims > Click Edit
  1. FED_ID - Add new claim > Name: FED_ID > Source attribute: <LMP Account Name>
3. SAML Certificates > Click Edit
  1. Signing Option > Select Sign SAML response and assertion.
  2. Signing Algorithm > SHA-256.
  3. Download the Certificate (Base64). :
    Rename the .cer to .cert.:
    Upload it to Certificate under Identity Provider (IdP) Settings of LMP
4. Set up the created application
  1. Login URL - Copy to IdP Single Sign URL of LMP.
  2. Azure ID identifier - IdP entity ID / issuer of LMP.
Test single-sign on with the created application.

Was this article helpful?