Policies Tab


On the Policies tab of the Admin Console, there are links to Manage Policies and  to Other Enterprise Options.  Other Enterprise Options takes you to a page containing NEVER URLS and Equivalent Domain options.



Global Never URLs, Global Only URLs


Global Never URLs and Global Only URLs enable you to create whitelists and blacklists of URLs upon which you do or do not want LastPass to be enabled.

If there is a certain, select group of URLs upon which you do not want LastPass prompts enabled, you should enter these domains under the ‘Global Never URL’ box.

If you want to disable LastPass prompts altogether with the exception of just a select group of domains, then you should enter these domains under the ‘Global Only URL’ box. We do not recommend using Only URLs unless you have a very limited use case in mind.




Creating Equivalent Domains


You can also create ‘equivalent domains’. Equivalent domains allow you to manage a single login for different domains that are related. An example is Google and YouTube.  Since they are both owned by the same company, your login works on both sites. So rather than having the same login twice, you can have it for one and we will treat both domains equivalently.






Here you can enter the API URL to be used with Salesforce# multifactor authentication.




RSA SecureID


Here you can setup RSA SecurID authentication via RADIUS.



Master Password Change Information


This section displays the last time that each user changed their master password and allows you the option to require a password change when the user next logs in and provides their master password. Check any or all users that you would like to change.

Additionally, you can destroy the current session that users have active with the LastPass servers. This will force users to have to log in with their master password, triggering the password change if you have required it.