Duo Security Authentication
Duo Security is a secure, Two-Factor Authentication application that can be used as a multifactor option in your LastPass account.
To get started, LastPass admins must complete the steps for enabling Multifactor Authentication in the Admin Console.
For users, in order to use Duo Security, a Duo account is required. Register for an account at https://www.duosecurity.com/lastpass. Once registered, you can install Duo Mobile on your iOS or Android device.
Please note that if you have more than 1 Multifactor Authentication option enabled for your account, you must select your desired default authentication option from the drop-down menu at the bottom of your Multifactor Options window in order to be prompted to authenticate with your preferred option when logging in to LastPass.
Topics in this article:
Once you have enabled and set up Duo Security as your multifactor option, you can test your setup by following the instructions here.
If desired, check the box to enable the option, "Trust this computer for 30 days" and provide a computer name, then click Authenticate. Learn more about managing your trusted devices.
If your phone number has changed or mobile device used for authentication is lost, you can click I've lost my device on the Multifactor Authentication window. Once redirected, you can enter your LastPass email address and click Send Email to be sent an email with a set of instructions on how to disable Multifactor Authentication. If you do not receive an email, you may have a secondary security email enabled where the email was sent instead, and/or check your spam/junk email filters. If you are an Enterprise user, your account may have policies enforced that prevent disabling Multifactor Authentication via email. For these users, please contact your LastPass admin to disable it for you.
Additionally, the Duo admin for your account will need log in to Duo and to go to Duo Admin Panel > Users > [your account] > Phones and remove your phone number. Once removed, log in to your LastPass account and re-enable Duo Security as your multifactor option. You will be prompted to enroll your device again.