Universal Proxy

 

Prerequisites: Java 8.
We suggest to use Amazon Corretto JVM which can be downloaded here.
  • Select “Applications” from the left side menu to open the Application Management page. Then select “Legacy & VPN” from the submenu.

Legacy Apps

 

  • Click on the blue “+Add Legacy App” button.

Add legacy apps

 

  • A pop up window will appear. Choose your app from the Legacy app name drop-down menu or click on “Custom VPN“.

Legacy App Name

 

  • Please download the LDAP/RADIUS agent and click on “Save“.

 

  • Click on “Save“.
  • Copy the “MFA Key” by clicking on the green copy icon.

MFA Key

 

LDAP

  • Execute the installer as an administrator. 
  • The service configuration screen will show up. Select the network protocol. Set a listening port. Provide a certificate in pfx format containing a public and a private key if you wish to enable secure connections. 
  • Set the “MFA Key” that you retrieved from the LastPass admin portal (Application > Legacy & VPN, copy the LastPass MFA key value and paste it here)Click “Next“. 

Universal Proxy LP

 

Protocol -network protocol to be used by service
Port – listening port
LastPass URL – Authentication URL service endpoint
MFA Key – MFA key copied from the LastPass Admin Dashboard
Application Name – Set any value you like here if you wish to enable user authorization on LastPass side 
Certificate – provides a certificate file if you wish to enable SSL/TLS connections

  • Now select the Server Mode that better suits your needs.

LastPass: LastPass passwordless MFA authentication only
Password or LastPass: password or LastPass passwordless MFA authentication
2nd Factor Authentication: password authentication and LastPass MFA authentication

Universal Proxy 2

 

Domain – organization’s domain
Admin User – create an administrator user
Admin Password – set administrator password

  • If you selected Password or LastPass, or 2nd Factor Authentication, then you’ll be asked to provide your LDAP directory server parameters.

Universal Proxy 3


LDAP Server
– LDAP directory server name or IP address
Port – LDAP directory server port
TLS – enables secure connections to LDAP server
Admin User – LDAP user with read permissions on directory users

  • Click “Next” and then “Install” button.
  • Go to the Windows Services management utility and check that LastPass Universal Proxy is running.

Universal Proxy 4

 

As an alternative, you can check if service is up and running by checking the listening port with the following command:
netstat -atn | findstr :<service_port_number>

 

RADIUS

Please note that only PAP and CHAP modes are supported. Authorization and Accounting are not supported by this service.

  • Execute the installer as an administrator. 

  • The service configuration screen will show up. Select RADIUS as protocol. Set a listening port.

Universal Proxy Ldap

 

  • Set the “MFA Key” that you retrieved from the LastPass admin portal (Application > Legacy & VPN, copy the LastPass MFA key value and paste it here).
  • Click on “Next“.

Universal Proxy LDAP 2

 

  • Select LastPass as Server ModeThe other server modes are not supported for Radius protocol. 
  • Set your organization’s domain name in Domain.
  • Set a Radius secret.
  • Click “Next” and then “Install” button.
  • Go to the Windows Services management utility and check that LastPass Universal Proxy is running.

Universal Proxy 4

 

As an alternative, you can check if service is up and running by checking the listening port with the following command:
netstat -atn | findstr :<service_port_number>