Azure Active Directory (Azure AD) is Microsoft's multi-tenant cloud based directory and identity management service.
Make sure you have a valid subscription in Azure AD that handles the sign-in process and eventually provides the authentication credentials of subaccounts to the administrator console.
Specify the identifier for your region as follows:
Specify the reply URL for your region as follows:
Replace <unique_identifier> with a unique identifier. Record the unique identifier, which will be used when you create an SSO profile on the Trend Micro Email Security administrator console.
Replace <domain_name> with any of the following based on your location:
North America, Latin America and Asia Pacific:
Europe, the Middle East and Africa:
Australia and New Zealand:
Click No, I'll test later when you are prompted to choose whether to test single sign-on with Trend Micro Email Security Administrator Console. You are advised to perform a test after all SSO settings are complete.
User attributes and claims are used to get the email addresses of logon subaccounts to authenticate their identity. By default, the source attribute user.mail is preconfigured to get the email addresses. If the email addresses in your organization are defined by another source attribute, do the following to add a new claim name:
Click Add new claim. On the Manage claim screen, specify the claim name, leave Namespace empty, select Attribute as Source, select a value from the Source attribute drop-down list, and click Save.
When configuring the identity claim type for an SSO profile on Trend Micro Email Security, make sure you use the claim name specified here.