Single Sign-On

Cloud App Security supports seamless SAML-based single sign-on (SSO) using your corporate account credentials. After configuring SSO settings, administrators can use their Active Directory, Okta, or Google Workspace account credentials to single sign on to the Cloud App Security management console.

Cloud App Security currently supports either of the following identity providers for SSO:

  • Microsoft Active Directory Federation Services (AD FS) 2.0 and 3.0

  • Azure Active Directory (Azure AD)

  • Okta

  • Google Workspace

  • PingOne

To connect Cloud App Security to your organization environment for SSO:

  • Configure the identity provider you use for single sign-on.


    If you have a hybrid environment consisting of an Azure AD tenant and an on-premises AD FS federation server, Trend Micro recommends you configure and use Azure AD to ensure proper single sign-on to Cloud App Security.

  • Specify SSO settings on the management console.