Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Configuring Single Sign-On (SSO) on Cloud App Security (CAS) using Azure Active Directory Premium Edition

    • Updated:
    • 19 Mar 2021
    • Product/Version:
    • Cloud App Security
    • Platform:
    • SaaS
Summary
How to get the Application Identifier and Service URL in CAS to configure SSO using Azure AD Premium Edition:

1. Follow all the steps contained in the article below to configure SSO on your Azure:
https://docs.trendmicro.com/en-us/enterprise/cloud-app-security-online-help/administration_001/single-sign-on/configuring-azure-ac/using-azure-ad-premi.aspx

2. Under the step "11. Recording the following:" of the above help center, you will see how to get the necessary information in Azure which you need to copy and insert into the 'Application Identifier' and 'Service URL' in CAS.
 
  • In your Azure portal, go to the Overview screen of the application and take note of the following: Application (client) ID.
The Application (client) ID In Azure is what you need to use in CAS Application Identifier field.

image.png

image.png
 
  • Click Endpoints and then record SAML-P sign-on endpoint. This is also referred to as Service URL on the Cloud App.
When you click on Endpoints, there you will see SAML-P sign-on endpoint which will be used in CAS Service URL.

image.png

Image_4.png
3. Log in to the TMCAS Admin Console
4. Go to Administration > Single Sign-On
5. Select Enable SSO
6. Select Azure AD / AD FS as the Identity Provider
7. For the Service URL, type the SAML-P sign-on endpoint address taken from step 2 of this document.
8. For the Application Identifier, type the Application (client) ID also taken from step 2 of this document.
9. Click Save

Link explaining on how to configure Single Sign-On in CAS admin console: https://docs.trendmicro.com/en-us/enterprise/cloud-app-security-online-help/administration_001/single-sign-on/configuring-single-s.aspx

Image_5.png

Note that the sign-in page must be:

EU: https://admin-eu.tmcas.trendmicro.com
UK: https://admin.tmcas.trendmicro.co.uk
Japan: https://admin.tmcas.trendmicro.co.jp
US: https://admin.tmcas.trendmicro.com
Australia and New Zealand: https://admin-au.tmcas.trendmicro.com
Canada: https://admin-ca.tmcas.trendmicro.com
Singapore: https://admin.tmcas.trendmicro.com.sg
India: https://admin-in.tmcas.trendmicro.com

The SSO integrates AD credentials, so you need to login using the existing Active Directory corporate credentials.
Details
Public
Premium
Internal
Partner
Rating:
Category:
Configure
Solution Id:
000285600
Feedback
Did this article help you?

Thank you for your feedback!


*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.