HELP FILE

Enterprise Admin Management of Global Never and Global Only URLs

LastPass Enterprise admins can add Global Never and Global Only URLs in the Admin Console to control when you do or do not want LastPass to prompt your users for action. Additionally, a wildcard character (*) can be used for both a subdomain and subpath when adding Global Never URLs.

Note: If you choose not to use a wildcard character (*) for your URL or domain, LastPass will apply the "Never URL" logic to the exact string you have added. Additionally, if a user attempts to save a Site manually for a URL or domain that has been added as a Global Never URL, they will be informed that there is a policy restriction in place that prevents them from saving it.

If you are not an admin and want to manage these settings as a user from your Vault, please see Manage Never URLs. Please note that Global Only URLs can only be added and managed by LastPass Enterprise admins.

Topics in this article:

Manage Global Never URLs and Apps

Manage Global Only URLs

Manage Global Never URLs and Apps

Note: Using a wildcard character (*) is only supported for URLs and domains.

To create a blacklist of URLs and domains upon which you do not want LastPass prompts enabled, do the following:

  1. Log in and access the Admin Console.
  2. Go to Advanced OptionsEnterprise OptionsGlobal Never/Only URLs.
  3. Enter your desired URL(s) and/or domain(s), separated by commas or new lines. Here are some examples:
    • URLs and domains – To prevent LastPass from prompting for an exact URL or domain:
      • https://sample.com,http://testing.com,https://example.com
      • sample.com, testing.com, example.com
    • URLs and domains with wildcard(s)– To prevent LastPass from prompting for any variation before, after, and/or before & after a URL:
      • https://*.sample.com,http://testing.com*,https://*.example.com*
      • *sample.com, testing.com*, *example.com*
  4. Click Update when finished.

Manage Global Only URLs

Note: It is not recommended to use Global Only URLs unless there is a specific need in your infrastructure where you only want a few select domains to be enabled for LastPass prompts.

To create a whitelist for a select group of domains for which you only want LastPass prompts to be enabled, do the following:

  1. Log in and access the Admin Console.
  2. Go to Advanced OptionsEnterprise OptionsGlobal Never/Only URLs.
  3. Enter your desired URLs and/or domains in the "Global Only URLs" section.
  4. Click Update when finished.