- Log in to PingOne Application Admin Portal.
- Go to SETUP Tab and initialize Identity Repository.
Click the image to enlarge.
- Go to Applications, click the Add Application button under the SAML tab, and then select New SAML Application.
Click the image to enlarge.
- Fill in basic information on the New Application Setup page.
Click the image to enlarge.
- Upload XDR-SP Metadata XML to Application, and set the following field values:
- Protocol Version: SAML v 2.0
- Single logout Binding Type: Post
Click the image to enlarge.
- Click Next, and then ignore the SSO Attribute Mapping Setup.
- Assign User Group to the Application.
Click the image to enlarge.
The Trend Micro Vision One SAML Account created earlier should be included as one user of the group.
Sample Group: Trend-XDR@directory (Contains username and domain of SAML Account)
- Download PingOne-IDP Metadata XML.
- Click Download from SAML Metadata.
Sample File Name: saml2-metadata-p1idp.xml - Click Finish.
Click the image to enlarge.
- Click Download from SAML Metadata.
- Login to Trend Micro Vision One Console using the Master Administrator Account. Go to Single Sign-On Page > Upload PingOne-IDP Metadata XML to Vision One Console.
Click the image to enlarge.
- Test Federation from Trend Micro Vision One Console.
- Log out from Trend Micro Vision One Console.
- Enter the SAML Account on Trend Micro Vision One Login Page, and click Continue.
Click the image to enlarge.
This will redirect you to the Ping Identity Sign On page.
- Provide the Ping Identity Account and password of the SAML Account.
Click the image to enlarge.
The SAML account should now be able to access the Trend Micro Vision One Console.