Views:

When the TMWS certificate in the AD FS expires, replace it with the new TMWS certificate.

  1. Obtain the new TMWS certificate.
    1. In the TMWS console, go to Administration > USERS & AUTHENTICATION > Directory Services.
    2. Click the edit button next to Enabled under AD Integration.
    3. In the AD FS Identity Provider Settings section, click Download Service Provider Public Certificate.

      The new TMWS certificate is downloaded.

  2. Log on to the Windows Server machine where the AD FS is installed and copy the new TMWS certificate to the machine.
  3. On the Windows taskbar, click the start icon and open Server Manager.
  4. Go to Tools > AD FS Management.

    The AD FS management console is displayed.

  5. Click Relying Party Trusts.

    The Relying Party Trusts entries are listed in the right panel.

  6. Right click the entry for TMWS and click Properties.

    If you have configured AD FS integration automatically with a script, the name of the entry for TMWS is TrendMicro IWSaaS_****.

  7. On the Encryption tab, click Browser... and upload the new TMWS certificate.
  8. On the Signature tab, click Add.. to upload the new TMWS certificate.
  9. Remove the old TMWS certificate.
  10. Click Apply.
Parent topic: Active Directory Federation Services Authentication