product icon
Restrict access to my configuration file for the LastPass Universal Proxy 4.x on Windows

Restrict access to my configuration file for the LastPass Universal Proxy 4.x on Windows

    Before you begin: You must complete the steps for downloading and installing LastPass Universal Proxy, then configuring it using either the command line interface (CLI) or the configuration file.
    About this task:
    Note: This feature requires an account with the LastPass Business + Advanced MFA add-on. How do I upgrade my LastPass Business account with an add-on?

    After you have installed and configured the LastPass Universal Proxy, we highly recommend that you restrict access to the configuration file that gets created.

    The LastPass Universal Proxy configuration creates a plain text configuration file, at the default path of C:\Program Files\LastPass\Universal Proxy\conf\ (or the path you selected during installation, if different). This file contains sensitive security information to establish a connection between the proxy server and the LastPass cloud-based MFA authentication server, including a LastPass API key and optionally a RADIUS shared secret.

      To restrict the access to this configuration file do the following steps:

      1. In Windows Explorer, navigate to the file.
      2. Right-click on the file and select Properties.

        Result: The Properties window appears.

      3. Click the Security tab.
      4. Click Edit, to change permissions.

        Result: The Permissions for window appears.

      5. In the Permissions for window set the following:
        1. Under Group or user names:, select or add a group or user.
        2. In the Permissions for <user group> group box, check the checkboxes in the Allow and Deny columns, to allow or deny the available permissions for your selected user or group.
        3. Click Apply.
        4. Click OK.
      6. In the Properties window, click OK.