HELP FILE

Voorbeeld van een Universal Proxy-configuratie

De inhoud van het bestand server.properties moet het volgende zijn:

Opmerking: De omgeving is LDAP-protocol – SFA-modus, Active Directory als primaire verificatieserver.
Het invullen van company.name is optioneel tijdens de configuratie. Als u dat veld niet heeft geconfigureerd, wordt het niet weergegeven in het bestand server.properties.

###
### This configuration file contains the settings for the Universal Proxy.
### It has four sections
### 	* Server settings
### 	* LastPass API settings
### 	* LDAP settings
### 	* RADIUS settings
### Fill Server settings and LastPass API settings first. Then fill LDAP settings if you plan to use
### Universal Proxy using LDAP or LDAPS or fill RADIUS settings if you are going to use RADIUS.
### If a value is not applicable for your case leave it as it is.
### For further information see the online documentation:
### 	https://support.logmeininc.com/lastpass/help/what-is-lastpass-universal-proxy
###
### Note, that it is also possible to configure Universal Proxy using the command line tool.
### Issue the following command in PowerShell to start the command line configuration tool:
### 	uproxy -configurationTool
### Online documentation for the configuration tool:
### 	https://support.logmeininc.com/lastpass/help/how-do-i-configure-the-lastpass-universal-proxy-via-command-line
###


#######################################
#######################################
###                                 ###
### Universal Proxy Server settings ###
###                                 ###
#######################################
#######################################
##
## Server settings: set these values to configure how the Universal Proxy handles incoming authentication
## requests. Choose the authentication protocol (LDAP, LDAPS or RADIUS), specify the ports and domains and
## set the server mode (LP, PLP, SFA).
## For an explanation about server modes see the documentation:
## 	https://support.logmeininc.com/lastpass/help/what-is-lastpass-universal-proxy#server_modes
##

# The protocol to authenticate users. [LDAP | LDAPS | RADIUS]
server.protocol=LDAP

# The mode in which Universal Proxy should run [LP | PLP | SFA].
server.mode=SFA

# The port on which Universal Proxy listens on.
server.port=389

# The name of your company. This value appears to end users in the MFA app.
company.name=Test-company

#################################################################
#################################################################
###                                                           ###
### Authentication server settings: Common Login Service      ###
###                                                           ###
#################################################################
#################################################################
##
##

cli.cls.integration.key=your_cls_integration_key_goes_here
cli.cls.integration.secret=your_cls_integration_secret_goes_here
default.cls.auth.method=push


###################################################
###################################################
###                                             ###
### Authentication server settings: LDAP server ###
###                                             ###
###################################################
###################################################
##
## LDAP settings: set these values to configure Universal Proxy to be able to communicate with a LDAP server.
## Leave these values blank if you are not planning to use Universal Proxy for LDAP authentication.
## The ldap.admin.password field is applicable only if the server mode is LP.
## The ldap.address, ldap.port and ldap.tls fields can only be used if the server mode is either PLP or SFA.
## For an explanation about server modes see the documentation:
## 	https://support.logmeininc.com/lastpass/help/what-is-lastpass-universal-proxy#server_modes
## For the current server mode see the value of the server.mode variable in this file.
## Leave any value blank which is not applicable for your current setup.
##

# The address of the AD. Applies to server modes: [PLP | SFA]
ldap.address=172.19.0.5

# The port on which the AD expects authentication messages (default: LDAP: 389, LDAPS: 636). Applies to server modes: [PLP | SFA]
ldap.port=389

# The distinguished name of the LDAP admin user. Example: CN=admin,CN=Users,DC=domain,DC=com
ldap.admin=CN=testAdmin,CN=Users,DC=testproxy,DC=com

# The password of the LDAP admin user. Applies to server modes: [LP] only.
ldap.admin.password=your_password


# LDAP naming attribute: the name of the LDAP field in which the Windows user logon name is stored. Possible values: [cn | uid | userPrincipalName | sAMAccountName]
# ldap.attribute.login=sAMAccountName
ldap.attribute.login=sAMAccountName

Controleer het volgende:

  • De veldwaarde ldap.admin moet overeenkomen met de veldwaarde distinguishedNamein Active Directory.