PORT requirement: all URLs require port 443
| URL | Purpose |
|---|---|
| https://global.platform.truu.ai | The URL serves as a global access point for TruU cloud services and works alongside the tenant identifier for the client applications to obtain OAuth tokens, submit customer log entries, and send audit events. |
| https://[customer].idp.id.truu.ai | This endpoint serves as the dedicated cloud TruU’s Identity Server farm for the customer. TruU client software, including desktop and mobile authenticators along with integration adapters, utilize this endpoint for API calls to TruU cloud. End users will encounter this URL in their browsers when directed to TruU for web authentication via OIDC, SAML, Entra ID, or other SSO adapters. |
| https://[customer].id.truu.ai | This is the URL for a customer’s admin console. |
| https://[customer].portal.id.truu.ai | This is the URL for a customer’s user portal. End users access this web application when they wish to manage their devices (mobile app, passkeys, desktop clients) and factors (badge or PIN). This is a web application that communicates with https://global.platform.truu.ai for the data it renders and for enrolling devices. |
| https://[customer].workflow.id.truu.ai | This is the URL for the enrollment UI. This is the UI shown to end users who are enrolling the Windows or Mac Authenticator into TruU. This UI renders input forms based on the enrollment workflow configured by the customer admin. This application sends its data to the https://global.platform.truu.ai URL in order to confirm the details supplied by the end user. |
| https://[customer].cert.id.truu.ai | This is the URL that performs certificate-based authentication (CBA) for single sign-on (SSO). Not all customers will encounter this URL. Its primary use is to provide SSO support to Frontline Access (Shared Workstation) users. |
Configure the Self-Service Password Reset URL for WA Windows Authenticator