How do I permit offline access to my LastPass vault?
When you log in to your LastPass account via desktop or mobile device while you have an Internet connection, you are creating a locally cached version of your encrypted data to the local drive.
This is the data that LastPass loads when you log in to LastPass while offline. Any LastPass browser extension, desktop app, or mobile app can be logged into without an Internet connection, and will default to offline mode when no connection is present, if allowed to do so.
About federated login users
There are feature limitations that apply to LastPass users whose accounts are configured for federated login using AD FS, Azure AD, Okta, Google Workspace, PingOne, PingFederate, or OneLogin.
One limitation is that offline access is not permitted, as the client side (web browser extension) must remain online in order to obtain the user's encryption key and unlock the user's LastPass vault.
For more information, please see What are the limitations for LastPass users with federated login?
About offline access for passwordless login
Offline Mode for passwordless login enables users to authenticate with the LastPass Authenticator app using a time-based One-Time Passcode to access their desired resource (i.e., LastPass vault, SSO Apps, or their workstation via Workstation Login) even when an Internet connection is not present.
To control whether offline mode is available for passwordless login via the LastPass Authenticator app when accessing SSO apps and/or workstations, LastPass admins can manage custom authentication policy settings.
View the "Related Articles" below for instructions.