HELP FILE

LastPass Authenticator

LastPass Authenticator is a multifactor app for Android, iOS, and Windows mobile devices. It supports 3 ways to log in:

  • Time based 6-digit codes
  • One-tap push notifications
  • SMS 6-digit codes

LastPass Authenticator is also TOTP compliant, meaning it’s compatible with all apps and websites that support Google Authenticator. That means you can conveniently manage Multifactor Authentication for multiple services, all from LastPass Authenticator.

Note: Feature availability may vary depending on your account type.

For LastPass admins, it is recommended that you complete the steps for enabling Multifactor Authentication in the Admin Console.

For LastPass users, it is required that you follow all steps in Enable Multifactor Authentication (Users) before proceeding.

Please note that if you have more than 1 Multifactor Authentication option enabled for your account, you must select your desired default authentication option from the drop-down menu at the bottom of your Multifactor Options window in order to be prompted to authenticate with your preferred option when logging in to LastPass.

Topics in this article:

Set up and configure your account

Set up the LastPass Authenticator app

Use the LastPass Authenticator

Set up push notifications for other Sites

Restore authentication using Cloud Backup

Set up and configure your account

  1. Enable Multifactor Authentication in your LastPass account.
  2. Click the Edit icon for the LastPass Authenticator.
  3. For the "Enabled" option, select Yes from the drop-down menu.
  4. For the "Permit Offline Access" option, use the drop-down menu to choose from the following:
    • Select Allow if you wish to allow access to LastPass even when you are offline. This will store an encrypted Vault locally so you can log in without using Multifactor Authentication in case of a connectivity issue.
    • Select Disallow to prevent offline access, which requires the use of Multifactor Authentication and to be connected to the internet when using LastPass.
    • Note: If this option is selected and you are not connected to the internet and/or https://lastpass.com is not available, you will be unable to access your Vault. Learn more about offline access.

  5. When finished, click Update.

  1. Enter your Master Password, then click Continue.
  2. When prompted, click Enroll.
  3. When a new web browser window or tab appears, click Set up mobile app, then proceed to the next steps.

Set up the LastPass Authenticator app

  1. Install the LastPass Authenticator on your mobile device for iOS or Android, which is supported on Android OS 4.0.3 (Ice Cream Sandwich) or later.
  2. On your web browser window, click Next to proceed with the enrollment, then open the LastPass Authenticator app on your mobile device.

  1. If you have already used LastPass on your phone for a different account or application, tap Add new account. Otherwise, do the following:
    1. Tap the Add icon on the bottom of your device screen.
    2. Tap Scan Barcode.
    3. Using your mobile device's camera, scan the barcode displayed on your web browser window.
  1. From your computer, click Set up text message.
  2. Enter your mobile phone number and click Next.
  3. A text message is sent to your mobile device containing a verification code. Enter the code into your web browser, then click Finish text setup.
  4. Click Activate, then click Done.
  5. In your Vault, click OK on the confirmation messages.

Use the LastPass Authenticator

  1. Open the LastPass Authenticator app on your mobile device.
  2. On your desktop web browser or using the LastPass mobile app, log in to LastPass.
  3. You can verify your login in the following ways:
    • On your mobile device, tap Approve in the Mobile Authenticator app to verify your login, which automatically logs you in to your LastPass account on your web browser. If desired, check the box to enable the option, "Trust this device for 30 days" and provide a device name, then click Authenticate. Learn more about managing your trusted devices.
    • On your web browser, enter the 6-digit code displayed in the mobile app. If desired, check the box to enable the option, "Trust this computer for 30 days" and provide a computer name, then click Authenticate. Learn more about managing your trusted devices.
    • On your web browser, click Send SMS passcodes to have an SMS message containing a verification code sent to your mobile device. Once received, enter the code in your web browser, (if desired, check the box to enable the option, "Trust this computer for 30 days" and provide a computer name) and click Authenticate. Learn more about managing your trusted devices.

Set up push notifications for other Sites

If desired, you can set up push notifications via the LastPass Authenticator for an all-in-one authentication experience for compatible Sites, including:

  • Amazon.com (excludes AWS)
  • Google.com
  • Dropbox.com
  • Facebook.com
  • Evernote.com

Note: LastPass push notifications for the Sites listed above are web browser-specific. This means you will need to re-enable push notifications each time you log in to these Sites when using different web browsers.

To use push notifications, you must be actively logged in to your LastPass account via the web browser extension.

  1. Log in to LastPass via the web browser extension.
  2. Navigate to your desired Site and select the LastPass Authenticator to be used as your authentication option within the Site's security settings (instructions will vary for every Site).
  3. When the Site prompts you for a 6-digit code, open the LastPass Authenticator app, then add your Site as follows:
    1. Tap the Add icon on the bottom of your device screen.
    2. Tap Scan Barcode.
    3. Using your mobile device's camera, scan the barcode displayed on your web browser window.
  4. After adding the Site into app, go back to your Site's security settings and enter the 6-digit code displayed in the LastPass Authenticator to complete the set up.
  5. Once the set up is complete, log out of your Site and log back in again. You will be prompted once to manually enter the 6-digit authentication code.
  6. Once you have authenticated, the LastPass web browser extension will prompt you to click Enable to allow push notifications for your Site.
  7. The next time you visit your Site, you will be prompted with a push notification in the LastPass Authenticator app, where you can tap Approve to authenticate.

Note: If for any reason you are not prompted to authentication with a push notification, you can still manually enter the 6-digit code from the LastPass Authenticator app, or authenticate by sending a code via SMS.

Restore authentication using Cloud Backup

With LastPass Authenticator’s Cloud Backup feature, you can restore your multifactor tokens if you lose or upgrade your mobile device. Combined with our unique, one-tap verification experience, LastPass Authenticator gives you all the security you need from your LastPass Authenticator app, without any of the frustration.

Enable cloud backup

Note: The Cloud Backup feature is supported on iOS and Android devices only.

  1. Open the LastPass Authenticator app on your mobile device.
  2. Tap the Options icon in the toolbar.
  3. Toggle to enable the option, "Backup to LastPass".
    • If you have not yet installed the LastPass Password Manager mobile app (for iOS or Android) installed, you will be prompted to download and log in. Once logged in, switch back to the LastPass Authenticator app, toggle the option to enable "Backup to LastPass" again, then the backup will begin and display a confirmation message at the bottom of the screen once it is complete.
    • If you already have the LastPass Password Manager mobile app, you are prompted to confirm your email address, then the backup will begin and display a confirmation message at the bottom of the screen once it is complete.
  4. Once enabled, you can tap the Options icon in the toolbar of the LastPass Authenticator app and tap Backup Now anytime you want to create a backup.

Restore from Cloud Backup

Note: Push notifications will be transferred to the device on which you restore your database as they can only be enabled on one mobile device at a time.

  1. Install both the LastPass Password Manager (for iOS or Android)  and LastPass Authenticator (for iOS or Android) apps on your mobile device.
  2. Open the LastPass Authenticator app, then tap Restore from backup.
    • If you are already logged in to the LastPass Password Manager app, tap to confirm your account email address.
    • If you are not logged in, the LastPass Manager app will open and prompt you to log in. Once logged in, your account(s) in the LastPass Authenticator app will be restored.