# Set up proxy access for your on-prem agent
A proxy server allows an on-prem agent to operate in an environment with limited internet connectivity.
PKIX PATH BUILDING FAILED ERROR
Refer to PKIX path building failed error to learn how proxy misconfiguration can cause certificate validation issues.
To define proxy settings for your agent, create a proxy section in your configuration file with the following parameters and modify your agent's activation command:
| Config file definition | Description | Activation command parameter |
|---|---|---|
host | The IP address of the host. | --proxy-host=<host-ip-address> |
port | The port number the proxy uses. | --proxy-port=<port-number> |
username | Optional. Defines a username for the connection. | --proxy-username=<username> |
password | Optional. Defines a password for the connection. | --proxy-password=<password> |
Run the activate script with --help parameter to display the full list of accepted parameters.
SET UP A SECURE TUNNEL
Ensure your proxy server allows CONNECT requests to the Workato gateways sg3.workato.com and sg4.workato.com if you plan to establish a secure tunnel.
# Example configuration
The following config.yml section defines a password-protected proxy connection:
proxy:
host: 192.168.1.1
port: 8080
username: proxy_user
password: proxy_password
database: ...
jms: ...
The following command activates the agent and connects it to the password-protected proxy:
bin\activate.cmd --code={activation-code} --proxy-host=192.168.1.1 --proxy-port=8080 --proxy-username=proxy_user --proxy-password=proxy_password
Last updated: 5/29/2025, 10:25:55 PM