Integrate your IAM systems with Zero Trust Secure Access and manage authentication settings, such as single sign-on (SSO).

The following table describes the tabs available on the Identity and Access Management screen.
IAM Management
Leverage Third-Party Integration to grant permissions in your IAM systems and allow Zero Trust Secure Access to monitor user sign-in attempts, access user data, and perform actions such as disabling user accounts and forcing account password reset.
Local User Account Management
This feature is only available for customers that have updated to the Foundation Services release.
Add and manage user accounts not connected to an integrated third-party IAM system. Enabled accounts that have completed enrollment may authenticate to Private Access and Internet Access services through Trend Vision One.
For more information, see Local user account management.
Authentication Management
Click Configure Authentication Method to set up SAML-based single sign-on (SSO) for Private Access and Internet Access user authentication.
For more information, see Single Sign-On and Configuring SAML single sign-on.
You must grant data upload permission from the IAM Management tab for the IAM system you intend to use for SSO.
Zero Trust Secure Access only supports SSO for one IAM system at a time.
Reauthentication Settings
Configure the following re-authentication settings for Private Access and Internet Access desktop and mobile users:
  • The period before Private Access requires re-authentication (module and browser-based)
  • The period before Private Access automatically signs out inactive users (module only)
  • The period before Internet Access automatically signs out inactive users (module and browser-based)