This section describes how to use the PowerShell script to automatically configure Active Directory Federation Services (AD FS) 3.0 as a SAML IdP server in order to work with TMWS.
This script is supported only on Windows Server 2012, Windows Server 2012 R2, Windows Server 2016, and Windows Server 2019.
The package contains a PowerShell script adfs.ps1 and a Service Provider Metadata file iwsspmetadata.xml.
Always keep both files in the same directory.
After the script is successfully executed,
A token-signing certificate is automatically exported to the same directory as the script.
A relying party trust file named TrendMicro IWSaaS_<timestamp> is created under AD FS {version} > Trust Relationships > Relying Party Trusts. You can modify the file name as necessary from Properties > Identifiers.