HELP FILE

Voorbeeld van Universal Proxy-configuratie

De inhoud van het bestand server.properties moet het volgende zijn:

Opmerking: De omgeving is LDAP-protocol – SFA-modus, Active Directory als primaire verificatieserver.
Het invullen van company.name is optioneel tijdens de configuratie. Als u dat veld niet heeft geconfigureerd, wordt het niet weergegeven in het bestand server.properties.

###
### This configuration file contains the settings for the Universal Proxy.
### It has four sections
### 	* Server settings
### 	* LastPass API settings
### 	* LDAP settings
### 	* RADIUS settings
### Fill Server settings and LastPass API settings first. Then fill LDAP settings if you plan to use
### Universal Proxy using LDAP or LDAPS or fill RADIUS settings if you are going to use RADIUS.
### If a value is not applicable for your case leave it as it is.
### For further information see the online documentation:
### 	https://support.logmeininc.com/lastpass/help/what-is-lastpass-universal-proxy
###
### Note, that it is also possible to configure Universal Proxy using the command line tool.
### Issue the following command in PowerShell to start the command line configuration tool:
### 	uproxy -configurationTool
### Online documentation for the configuration tool:
### 	https://support.logmeininc.com/lastpass/help/how-do-i-configure-the-lastpass-universal-proxy-via-command-line
###


#######################################
#######################################
###                                 ###
### Universal Proxy Server settings ###
###                                 ###
#######################################
#######################################
##
## Server settings: set these values to configure how the Universal Proxy handles incoming authentication
## requests. Choose the authentication protocol (LDAP, LDAPS or RADIUS), specify the ports and domains and
## set the server mode (LP, PLP, SFA).
## For an explanation about server modes see the documentation:
## 	https://support.logmeininc.com/lastpass/help/what-is-lastpass-universal-proxy#server_modes
##

# The protocol to authenticate users. [LDAP | LDAPS | RADIUS]
server.protocol=LDAP

# The mode in which Universal Proxy should run [LP | PLP | SFA].
server.mode=SFA

# The port on which Universal Proxy listens on.
server.port=389

# The name of your company. This value appears to end users in the MFA app.
company.name=Test-company

###################################################
### Identity user name mapping: common settings ###
###################################################

# The domain of your company (i.e.: mycompany.com)
domain=testproxy.com

#################################################################
#################################################################
###                                                           ###
### Authentication server settings: LastPass Identity service ###
###                                                           ###
#################################################################
#################################################################
##
## LastPass authentication server settings: set these values to configure how the Universal Proxy can reach the LastPass Identity service.
## The documentation describes how to get a LastPass API key:
## 	https://support.logmeininc.com/lastpass/help/how-do-i-find-the-api-key
##

# The LastPass API key
api.key=your_api_key_goes_here

###################################################
###################################################
###                                             ###
### Authentication server settings: LDAP server ###
###                                             ###
###################################################
###################################################
##
## LDAP settings: set these values to configure Universal Proxy to be able to communicate with a LDAP server.
## Leave these values blank if you are not planning to use Universal Proxy for LDAP authentication.
## The ldap.admin.password field is applicable only if the server mode is LP.
## The ldap.address, ldap.port and ldap.tls fields can only be used if the server mode is either PLP or SFA.
## For an explanation about server modes see the documentation:
## 	https://support.logmeininc.com/lastpass/help/what-is-lastpass-universal-proxy#server_modes
## For the current server mode see the value of the server.mode variable in this file.
## Leave any value blank which is not applicable for your current setup.
##

# The address of the AD. Applies to server modes: [PLP | SFA]
ldap.address=172.19.0.5

# The port on which the AD expects authentication messages (default: LDAP: 389, LDAPS: 636). Applies to server modes: [PLP | SFA]
ldap.port=389

# The distinguished name of the LDAP admin user. Example: CN=admin,CN=Users,DC=domain,DC=com
ldap.admin=CN=testAdmin,CN=Users,DC=testproxy,DC=com

# LDAP naming attribute: the name of the LDAP field in which the Windows user logon name is stored. Possible values: [cn | uid | userPrincipalName | sAMAccountName]
# ldap.attribute.login=sAMAccountName
ldap.attribute.login=sAMAccountName


##################################################
### Identity user name mapping for LDAP server ###
##################################################

# The name of the LDAP attribute which stores the employees' logon name in LastPass Identity service.
# ldap.field.name=userPrincipalName
ldap.field.name=userPrincipalName

Controleer het volgende:

  • De veldwaarde ldap.admin moet overeenkomen met de veldwaarde distinguishedNamein Active Directory.