HELP FILE

Use Temporary (One-Time) Passwords

LastPass provides you with the ability to generate one-time passwords (OTPs) in which each password will only work for one login session. This means that even if someone else gets access to a previously used OTP, they will not be able to use it to log on to your LastPass account.

About one-time passwords

One-time passwords (OTPs) can be used if you want to access LastPass from a public computer and do not want to enter your Master Password because someone else may be able to access it (using a keylogger to capture your typed keys or other malware). They are also handy if you need to access your LastPass Vault but you do not know what kind of security is implemented on the computer you are going to use.

A one-time password is something you generate after you have logged in to your account, and is something you can write down. Please be aware that one-time passwords are not sent via email or LastPass Support, they are generated directly by you.

To use the one-time passwords, you generate a list of temporary passwords ahead of time, and cross them off (if they are printed or stored elsewhere) as they are used each time you log in to your account. You can also invalidate OTPs if you are concerned that they have become compromised. Please note that you can only log in with a one-time password from the one-time password login page at https://lastpass.com/otp.php.

CAUTION: Changing or resetting your Master Password will invalidate all one-time passwords that you generated before the change occurred (as it requires your Vault to be re-encrypted). This means that you will need to generate new OTPs after a Master Password change, as all OTPs you generated previously will no longer be listed.