How do I set up passwordless authentication via the LastPass Authenticator?

Passwordless authentication is an adaptive authentication feature of the LastPass Authenticator that supports using biometrics (face or fingerprint recognition) and PIN Code in place of manually entering a password for authentication when you verify your login for SSO apps & websites and/or a Windows or Mac workstation set up with Workstation Login.

Note: This feature requires an account with the LastPass Business + Advanced MFA add-on. How do I upgrade my LastPass Business account with an add-on?
Restriction: If you have a LastPass business account, the ability to perform these actions may be limited or prohibited due to policies enabled by your LastPass admin.

Step #1: Activate passwordless authentication

Step #2: Pair the LastPass Authenticator with your LastPass account

Once passwordless authentication has been activated, you can pair the LastPass Authenticator with your LastPass Business account.
Attention: The steps below are only available for users with LastPass Business accounts. Learn more about business account types.
  1. Log in to LastPass and access your vault by doing either of the following:
    • In your web browser toolbar, click the LastPass icon active LastPass icon and select Open My Vault.
    • Go to and log in with your email address and master password.
  2. Select Account Settings in the left navigation.
  3. Select the Multifactor Options tab.
  4. Select the Edit icon Edit option for the LastPass Authenticator.
  5. For the "Enabled" drop-down menu, select Yes.
  6. For the "Permit Offline Access" drop-down menu, choose from the following:
    • Select Allow if you want to allow access to LastPass even when you are offline. This will store an encrypted Vault locally so you can log in without using multifactor authentication in case of a connectivity issue.
    • Select Disallow to prevent offline access, which requires the use of multifactor authentication and to be connected to the internet when using LastPass.

      If this option is selected and you are not connected to the internet and/or is not available, you will be unable to access your vault. Learn more about offline access.

  7. When finished, select Update.
  8. Enter your master password, then select Continue.
The LastPass Authenticator entry now displays as Enabled in your Multifactor Options and is paired with your LastPass Business account.

Step #3: Use passwordless authentication to log in to LastPass

  1. Navigate to the Passwordless Authentication portal at

    Note:  At this time, using passwordless authentication when logging in to the LastPass for Windows Desktop application is not supported.

  2. On your mobile device, open the LastPass Authenticator app.
  3. When prompted in the app, tap or select Accept for the authentication prompt (you will have one minute to respond, as indicated by the timer on the screen).
  4. Verify your identity using biometrics (facial recognition or fingerprint identification) or Pin Code.
You have used passwordless authentication via the LastPass Authenticator to log in to your LastPass Vault.