HELP FILE

How do I reset my Master Password using mobile account recovery on Android for LastPass?

Once account recovery has been set up on your mobile device, you can reset your Master Password using fingerprint identification to restore access to your Vault.

Watch Video

  1. Open the LastPass Password Manager app, then select Trouble logging in? on the login screen.
  2. Tap Forgot Master Password.
  3. Tap Recover Account.
  4. Tap Recover with Fingerprint.

    Recover with Fingerprint on Android

  5. Touch the fingerprint sensor on your device (don't press) to scan your fingerprint.
  6. If prompted, complete steps for multifactor authentication (if it is enabled on your account) and select Next.
  7. Enter a new Master Password, then confirm it. If desired, set a password hint (recommended).

    Tip: We recommend using the following best practices when creating your Master Password:
    • Use a minimum of 12 characters, but the lengthier the better
    • Use upper case, lower case, numeric, and special character values
    • Make it pronounceable and memorable, but not easily guessed (e.g., a passphrase)
    • Make sure that it is unique only to you
    • Don't use personal information
    • A good example is: Fidoate!my2woolsox

  8. Select Set Master Password.

    Set Master Password on Android

  9. Select Go to Login.
  10. Enter your username and newly created Master Password, then select Log In to access your Vault.
You have now reset your Master Password using biometrics in the LastPass Password Manager app for Android.
What to do next: (Recommended)

It is strongly recommended that you perform the following steps immediately after updating your Master Password in order to create new Recovery One Time Passwords:

  1. Log out of LastPass on every computer and/or mobile device where you have installed LastPass and accessed your LastPass Vault. You can check your active sessions for all devices.
  2. Log back in with your new Master Password.
For each computer and/or device where this is done, a new Recovery One Time Password is created, which can be used for account recovery if your Master Password is ever forgotten.

What to do next: If you logged in to your online web Vault (i.e., the LastPass website) on a public or untrusted device, it is strongly recommended that you clear the browser cache on all web browsers where you accessed LastPass in order to clear the Recovery One Time Password that was created from accessing the LastPass website.
What to do next: (Optional)

If you have created a list of temporary One-Time Passwords to use on public/untrusted computers, then please be aware that changing or resetting your Master Password will invalidate all one-time passwords that you generated before the change occurred (as it requires your Vault to be re-encrypted). This means that you will need to generate new OTPs after a Master Password change, as all OTPs you generated previously will no longer be listed. Learn how to generate new one-time passwords.