HELP FILE

LastPass MFA App Migration FAQs

To provide customers with one comprehensive application to meet their authentication needs, all users of the LastPass MFA app will be migrated to the LastPass Authenticator to use as a single mobile authentication solution.

LastPass currently supports two authentication applications: LastPass Authenticator and LastPass MFA. In order to provide customers with one comprehensive application to meet their authentication needs, LastPass is consolidating the LastPass MFA mobile app into the enhanced Authenticator app.

What is the LastPass Authenticator?

The LastPass Authenticator app generates rotating passcodes used for second-factor authentication when logging into websites, including LastPass. When configured for LastPass, the app sends convenient push notifications that simplify the secure login process.

What is changing for the LastPass MFA app, and when?

All active users of the LastPass MFA app will be migrated to the LastPass Authenticator app to use for authentication going forward. This migration will be rolled out in phases beginning May 2021. All LastPass admins will be notified via email with a strategy and migration plan, which will provide their users up 30 days to seamlessly migrate to the LastPass Authenticator.

What are the benefits of migrating to the LastPass Authenticator?

The LastPass Authenticator is a comprehensive multifactor authentication solution to solve your business’ security needs. With LastPass Authenticator, your business will gain security-focused functionality, including:

  • Biometric-protected push notifications for both the password manager and single sign-on applications connected through LastPass
  • Third-party one-time passcodes to access sites that require secondary authentication
  • Ability to autofill one-time passcodes for compatible sites
  • Account backup and recovery for third-party passcodes to streamline the authenticator setup process when a user needs to migrate their account data to a new phone

Will LastPass MFA users lose any functionality as part of this migration?

No, LastPass MFA users will not lose any functionality. In fact, they will gain additional functionality, including:

  • Use of time-based, one-time passcodes (TOTP codes) which can be used for two-factor authentication to securely access websites, including LastPass. Users can manage their stored accounts, generate TOTP codes, and accept authentication requests all in one comprehensive app.
  • The ability to enable Cloud Backup to back-up the accounts in the LastPass Authenticator app directly to LastPass, then restore those accounts from Cloud Backup to streamline the process of moving the LastPass Authenticator app to a new mobile device.

How long do users have to migrate to the LastPass Authenticator?

LastPass MFA users will receive a notification within the LastPass MFA app informing them that they must migrate to the LastPass Authenticator. They will have up to 30 days (after receiving an in-app notification) to migrate.

What if users do not take action?

After 30 days, if the user has not taken any action, the LastPass MFA app will no longer function. If the user opens the LastPass MFA app, they will be informed that the app is no longer supported, and that they can uninstall it.

When users install the latest version of LastPass Authenticator app, their LastPass MFA account data (stored accounts) will be automatically transferred to the LastPass Authenticator app.

What are the steps to migrate?

LastPass MFA users can follow these instructions to migrate their account data from the LastPass MFA app to the LastPass Authenticator app.

What is the experience if users already have the LastPass Authenticator app installed?

The migration process will be completely seamless. Once users install the latest version (2.0+) of the LastPass Authenticator app and launch it, all of the accounts that were stored in the LastPass MFA app will automatically be moved over and displayed in the LastPass Authenticator app. The stored accounts that already existed in the LastPass Authenticator app will be unaffected by this update.

What if LastPass MFA users encounter an issue during or after the migration process?

LastPass MFA users who encounter any issues should re-pair their LastPass MFA account. This can be done by resending an activation email (users can resend it to themselves or ask a LastPass admin to resend the activation email) then following the steps to pair their account again.

What if LastPass Authenticator users encounter an issue during or after the update process?

While we have tested the LastPass Authenticator app extensively and do not expect any disruption, we also understand that issues can occur with any update.

If users experience an interruption in receiving push notifications, they can follow these instructions to unpair their LastPass account from the LastPass Authenticator, then pair it once again to resolve the issue.

If users encounter any issues with their stored accounts for time-based, one-time passcodes (TOTP) as a result of this update, please contact LastPass Support and include the following information:

  • Description of issue
  • Android OS version
  • LastPass Authenticator app version
  • Device manufacturer

I have Workstation Login installed – will I need to take additional action?

If you allow Offline Mode for Workstation Login, you must re-pair your workstation installation with the LastPass Authenticator app after migrating from the LastPass MFA app. Re-pairing will generate new one-time passcodes (OTPs), which are used for logging in to your workstation when no internet connection is present (i.e., Offline Mode).

Note: Offline Mode is an optional, admin-configurable feature that can be enabled via Workstation Login policy in the new Admin Console.

Follow the instructions to re-pair your Windows or Mac workstation.

Having trouble? If you have re-paired your workstation with the LastPass Authenticator app but are still not receiving an authentication prompt, test authentication for your LastPass account by logging in to the LastPass Authentication portal, as follows:

  1. Go to the LastPass Authentication portal at https://identity.lastpass.com.
  2. Enter your email address, then click Log In.

An authentication prompt is sent to your mobile device via the LastPass Authenticator app – tap or select Accept to authenticate.

Troubleshooting: If you logged in to the LastPass Authentication portal and still did not receive an authentication prompt on your mobile device, un-pair then re-pair your LastPass account with the LastPass Authenticator.