Online Help

SafeNet Trusted Access for Trend Micro Deep Security

Overview

Configuring SafeNet Trusted Access for Trend Micro Deep Security is a three-step process:

1.Trend Micro Deep Security setup

2.SafeNet Trusted Access setup

3.Verify authentication

Trend Micro Deep Security Setup

As prerequisites,

Download the Identity Provider metadata from the SafeNet Trusted Access console by clicking the Download metadata file button. You will need this metadata in one of the steps below.

In Trend Micro Deep Security, you need to assign a role to configure SafeNet Trusted Access as your identity provider.

 

Perform the following steps to configure SafeNet Trusted Access as your identity provider in Trend Micro Deep Security:

1.Log in to Trend Micro Deep Security as an administrator using the https://app.deepsecurity.trendmicro.com/SignIn.screen URL.

2.Click the Administration tab and perform the following steps:

a.In the left pane, click User Management > Identity Providers > SAML.

b.In the right pane, under Service Provider, click Download to download the metadata of Trend Micro Deep Security, save it on your local machine with the .xml extension (for example, metadata.xml).

3.Open the Trend Micro Deep Security metadata and copy the text given under the <ds:X509Certificate> tag.

4.In a text editor, paste the text copied in the previous step, add -----BEGIN CERTIFICATE----- at the starting and add -----END CERTIFICATE----- at the end of text, and save the file on your local machine with the .cer extension (for example,TMcert.cer). This certificate will be used while activating the Trend Micro Deep Security application in SafeNet Trusted Access.

5.Under Identity Providers, click Get Started.

6.On the Create a SAML identity provider window, under Step 1 of 2: Identity Provider Federation Data, click Choose File to search and select the metadata file that you downloaded earlier from the SafeNet Trusted Access console, and click Next.

7.Under Step 2 of 2: Name and Review, perform the following steps:

a.In the Entity ID field, ensure that entity ID of IDP is prefilled.

b.In the Name field, enter a name for identification (for example, SafeNet).

Note:  The identification name will be used as the IdP name while activating Trend Micro Deep Security in STA.

c.In the Description field, enter a valid description.

d.Click Finish.

8.You will be redirected to the Roles window. As given in the right pane, note down the role name that you want to assign to the Trend Micro user. The role name will be used while activating the Trend Micro Deep Security in STA.

9.In the left pane, click User management > Identity Provider > SAML.

10.Under Identity Provider, ensure that an identity provider name is listed. Note down the URN (for example, urn:tmds:identity:<Prod ID>:<Tenant ID>:saml-provider/<IDP Name>). It will be used while activating Trend Micro Deep Security in STA.

SafeNet Trusted Access Setup

After completing the first step of configuring SafeNet Trusted Access in Trend Micro Deep Security, the second step is to activate the Trend Micro Deep Security application in SafeNet Trusted Access by performing the following steps:

1.In the Applications pane, the Trend Micro Deep Security application you added earlier is in the inactive state by default. To configure and activate this application, click the application (for example, Trend Micro Deep Security) and proceed to the next step.

2.Under STA Setup, perform the following steps:

a.In the Prod ID and Tenant ID fields, enter the values as mentioned in step 10 of Trend Micro Deep Security Setup.

b.In the ROLE NAME fields, enter the role name that you noted earlier in step 8 of Trend Micro Deep Security Setup

c.In the IDP NAME field, enter the name of the SafeNet Trusted Access identity provider (for example, SafeNet) that you created earlier in step 7 of Trend Micro Deep Security Setup.

d.Under User Login ID Mapping, in the NAME ID field, ensure that Email address is selected.

e.Under Return Attributes, click on the Add Attribute link. A new row will be added in the attribute list.

f.Under RETURN ATTRIBUTE, in the field, enter https://deepsecurity.trendmicro.com/SAML/Attributes/RoleSessionName and select USER ATTRIBUTE as SAS User ID or First Name.

g.Click Save Configuration to save the details and activate the Trend Micro Deep Security application in SafeNet Trusted Access.

Verify Authentication

Using STA Console

Navigate to the Trend Micro Deep Security login URL,<Your SafeNet IDP Single Sign-On Service URL> /clients/<Trend Micro Deep Security Application Name>, where, <Trend Micro Deep Security Application Name> is the name that is provided while adding the Trend Micro Deep Security application in SafeNet Trusted Access. You will be redirected to the SafeNet Trusted Access sign-in page. Enter your primary directory login information, approve the two-factor authentication, and you should be redirected to the Trend Micro Deep Security portal after authentication.

Using STA User Portal

Navigate to the User Portal URL to log in to the STA User Portal dashboard. On the dashboard, you will see a list of applications to which you have access. Click the Trend Micro Deep Security application icon. You should be successfully logged in to the Trend Micro Deep Security portal after authentication.

 

© 2019 SafeNet Trusted Access. Various trademarks are held by their respective owners.