Skip to content
Find out how we support MDR.

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/central/customer/help/en-us/index.html?contextId=trendmicrocloudapp

Integrate Trend Micro Cloud App Security

API Public Cloud

You must have the Public Cloud integrations license pack to use this feature.

You can integrate Trend Micro Cloud App Security with Sophos Central so that it sends data to Sophos for analysis.

This is an API-based integration.

The key steps are as follows:

  • Get an API token and base URL from Trend Micro Cloud App Security.
  • Configure an integration in Sophos Central.

Get details from Trend Micro Cloud App Security

Generate an API token and check your base URL.

Generate an API token

The API key is the global unique identifier your integration will use to authenticate when it accesses Trend Micro Cloud App Security.

To generate the API token you need for integration, do as follows:

  1. Sign in to the Trend Micro Cloud App Security management console.
  2. Go to Administration > Automation and Integration APIs.
  3. Click Add and select the target you need the token for.
  4. Enter a name for the token.
  5. (Optional) Enter a description for the token.
  6. To select the API, choose User account under Threat Mitigation.
  7. Click Click here and enter your Microsoft Office 365 Global Administrator credentials to grant permissions.

  8. Click Create Token.

    The generated token is shown.

  9. Copy the API token value and save it. Keep the API token private. You'll need to use it later in Sophos Central.

Get your Regional URL

Here are the Regional URLs we support:

Region Regional URL
US (global) api.tmcas.trendmicro.com
EU api-eu.tmcas.trendmicro.com
Australia and New Zealand api-au.tmcas.trendmicro.com
UK api.tmcas.trendmicro.co.uk
Canada api-ca.tmcas.trendmicro.com
Japan api.tmcas.trendmicro.co.jp
Singapore api.tmcas.trendmicro.com.sg
India api-in.tmcas.trendmicro.com
Middle East (UAE) api-mea.tmcas.trendmicro.com

Next, you configure an integration in Sophos Central.

Configure an integration

To integrate Trend Micro Cloud App Security with Sophos Central, do as follows:

  1. In Sophos Central, go to Threat Analysis Center > Integrations > Marketplace.

  2. Click Trend Micro - Cloud App.

    The Trend Micro - Cloud App Security page opens. You can configure integrations here and see a list of any you've already configured.

  3. In Data Ingest (Security Alerts), click Add Configuration.

    Note

    If this is the first integration you've added, we'll ask for details about your internal domains and IPs. See Provide your domain and IP details.

  4. In Integration steps, do as follows:

    1. Enter the Integration name and Integration description.
    2. Enter the Base URL. This is the Trend Micro Regional URL.
    3. Enter the API Token. This is the API key you got from Trend Micro.

  5. Click Save.

We create the integration and it appears in your list. If its status icon shows a green tick, your data will appear in the Sophos Data Lake after validation.

More information

Getting started with Cloud App Security APIs