Configure Google Cloud Identity to serve as a SAML (2.0) identity provider for use by Trend Vision One.
 |
NoteThis feature is not available in all regions.
|
Google Cloud Identity is a unified identity and device management platform that
provides SSO and multi-factor authentication services as well as device management.
To use Google Cloud Identity as an identity provider, you must have a valid Google
Workspace subscription or Cloud Identity account (free or premium). Configuration
is
only possible through the Google Admin console using an admin account with super
administrator privileges enabled.
Procedure
- Sign in to the Google Admin console using your administrator account.
- In the Google Admin console, go to .
- From the Add app drop-down menu, select Add custom SAML app.
- Enter a name for your custom SAML app and click Continue.
- Download the metadata file provided.
- In the Trend Vision One console, import the
metadata file you downloaded from the Google Admin console.
- If you have upgraded to the Foundation Services release:
-
Go to and click Add Identity Provider.
-
Enter the name you chose for your custom SAML app and an optional description.
-
Upload the metadata file.
-
Click Save.
-
- If you have not upgraded to the Foundation Services release:
-
Go to .
-
Enable SAML (2.0) single sign-on.
-
Upload the metadata file.
- Click Save.
-
- If you have upgraded to the Foundation Services release:
- In the Google Admin console, configure the service provider details using the
following values.
-
ACS URL: https://signin.v1.trendmicro.com/saml/idpresponse
-
Entity ID: https://signin.v1.trendmicro.com/saml
-
Name ID format: Select EMAIL.
-
Name ID: Select .
-
- Click Continue.
- In the settings for your new custom SAML app, click the arrow icon on the User access panel to choose users to authenticate to Trend Vision One.
- Set the service status to ON for everyone.
- Click Save.