How do I activate federated login via Azure AD, Okta, Google Workspace, PingOne, or OneLogin as a brand new user?

Your Welcome email will include your LastPass username (email address) and a temporary Activation code that you will use to log in with (only once) so that your vault can be de-crypted and re-encrypted to utilize your Azure AD, Okta, Google Workspace, PingOne, or OneLogin account going forward.

Note: These activation steps do not apply to brand new federated login users provisioned via AD FS or PingFederate – see those instructions.

Open the Welcome email you received.
Copy the Activation code to your clipboard or a text editor application.
Click Activate LastPass.
Once redirected to the "Finish account creation" page, paste the Activation code into the field (your LastPass username is already pre-populated for you).
Click Continue.
You are redirected to your company's federated login page (Identity Provider sign-in page), where you can finish signing in to LastPass using your Azure AD, Okta, Google Workspace, PingOne, or OneLogin account credentials.

Results: Your LastPass account is now activated to use federated login, and you will continue to use your Azure AD, Okta, Google Workspace, PingOne, or OneLogin account credentials to access your LastPass vault.