# Prerequisites

The Tray Application and Windows Service can be installed on the follow operating systems:&#x20;

1. Windows Server 2022
2. Windows Server 2025

{% hint style="info" %}
Note:  For Active Directory servers, the Keeper Bridge application will need to be installed on a domain joined member server located on the same network as a domain controller. Ensure your domain joined member server is NOT a domain controller as this is not a supported setup of the Keeper Bridge application.  The Domain functional level must be at Windows 2008 R2 or higher in order for the bridge to properly integrate.<br>
{% endhint %}

The following data needs to be known in order to configure the Tray Application:&#x20;

1. &#x20;Domain or Forest name of the Directory.
2. &#x20;An account used to bind the Keeper Bridge to the Directory. This is a Directory account which requires at least read only access to the Directory domain. No other special privileges are needed.
3. &#x20;A Security Group called **Keeper Admins**. Only users that are member of the **Keeper Admins** Security group will be permitted to login to the Tray application and configure the service. This group name can be changed and the Admin Security Group setting in the Keeper Admin Security configuration modified accordingly later. For a multi-domain forest create this group as a universal group so that users in this group are cached in the Global Catalog.
4. &#x20;Ensure the Email Property (typically “mail” or “userPrincipalName”) in Directory Service Options is set to the correct value to pick up the user's Email address.
5. The Keeper Bridge needs access to the Directory on either ports 389 or 636 and to the Keeper Cloud on port 443.  (keepersecurity.com or keepersecurity.eu depending on your data center location).

{% hint style="success" %}
To help alleviate permission issues that can arise if different administrators run the bridge under their account, a Keeper service account can be used.  This is a Keeper account with the "Keeper Administrator" permission assigned.
{% endhint %}


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.keeper.io/keeper-bridge/prerequisites.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.