product icon

Enable multifactor authentication for LastPass

    Multifactor authentication is an added layer of security that you can enable within LastPass, and requires a second step before you can gain access to your account. Enabling this security feature helps protect your account from keyloggers and other threats, even if your master password was compromised, your account could not be accessed without this second form of authentication.

    Restriction: If you have a LastPass Teams or LastPass Business account, the ability to perform these actions may be limited or prohibited due to policies enabled by your LastPass admin.

    Alternatively, you can disable multifactor authentication in your Account Settings.

    Are you a LastPass admin for a LastPass Teams or LastPass Business account? It is recommended that you complete the steps for enabling multifactor authentication in the Admin Console.

    Enable a multifactor option in your vault

    1. Log in to LastPass and access your vault by doing either of the following:
      • In your web browser toolbar, click the LastPass icon active LastPass icon and select Vault or Open My Vault.
      • Go to and log in with your email address and master password.
    2. Select Account Settings in the left navigation.
    3. Select the Multifactor Options tab.
    4. Click the Edit icon Edit option to the right of your desired multifactor option.
      Edit Multifactor Option

      Result: A window will pop-up for your selected authenticator option.

    5. For the Enabled drop-down menu, select Yes.
    6. For the Permit Offline Access drop-down menu, choose one of the following:
      • Select Allow if you want to allow access to LastPass even when you are offline. This will store an encrypted vault locally so you can log in without using multifactor authentication in case of a connectivity issue.
      • Select Disallow to prevent offline access, which requires the use of multifactor authentication and to be connected to the Internet when using LastPass.
        Important: If this option is selected and you are not connected to the Internet and/or is not available, you will be unable to access your vault. Learn more about offline access.
    7. Depending on the authenticator you have selected, the next steps will vary. For next steps, see Which multifactor authentication options does LastPass support?.

    About enabling multiple multifactor authentication options

    You can enable more than one multifactor authentication option to be used when accessing your LastPass vault. It is recommended whenever possible to enable multiple authentication options (even on multiple devices) in case you ever lose access to one device, you will have a backup.

    Once you have enabled your first Multifactor Option, you can repeat the same steps in Enable a multifactor option in your vault to enable as many alternative multifactor options as needed.

    Please note that when you have more than one multifactor authentication option enabled for your account, you must select your desired default authentication option from the drop-down menu at the bottom of your Multifactor Options window in order to be prompted to authenticate with your preferred option when logging in to LastPass.
    Select preferred Multifactor Authenticator