Skip to main content

This article helps connect your Proofpoint TAP installation to the Expel Workbench. The process involves creating a service principal and secret, then inputting that information to the Expel Workbench.


This article was accurate at the time of writing, but changes happen. If you find the instructions are outdated, leave a description in the comment field below and let us know!

Step 1: Create a service principal to enable console access

  1. Sign into the Proofpoint TAP Dashboard ( ).

  2. Select the Gear icon in the left navigation to open the Settings menu.

  3. Select the Connected Applications tab at the top of the screen.

  4. To create a service principal, click Create New Credential.

  5. Name the new credential "Expel" or something similar, then click Generate.

  6. Write down the Service Principal and Secret.



    Once you close the lightbox, you won't see the service principal or secret again. So, be sure to write them down now!

Step 2: Configure the technology in Workbench

Now that we have access and noted the credentials, we can integrate Proofpoint TAP with Workbench.

  1. In a new browser tab, log into

  2. On the console page, navigate to Settings and click Security Devices.

  3. At the top of the page, click Add Security Device.

  4. Find and select Proofpoint TAP.

  5. Fill in the blanks like this:

    • Name: the new credential name.

    • Location: the physical location of the server.

    • TAP service principal: the service principal created in Step 1.

    • TAP secret: the secret created in Step 1.