As a user, once the LastPass MFA service for Microsoft AD FS has been set up, you can sign in to your relying party applications by entering your AD credentials then authenticating on your mobile device.
Note: Authentication methods will vary, depending on how your account is set up and/or policies that are enforced.
- In your browser, enter your Active Directory credential, then proceed to sign in.

Result: You are prompted to authenticate.
- By default, a push notification is sent via the LastPass Authenticator app. Tap Accept when prompted.
Troubleshooting: If desired, click the Having trouble? drop-down menu on the Multifactor authentication screen and choose from either of the following authentication methods:
- Select Enter passcode, then enter the time-based, one-time passcode (TOTP) from the LastPass Authenticator .
- Select Call me, then click Call me and answer the phone call made by the LastPass automated system. Press the # key to verify your authentication.
Note: The last authentication method that was used will be served by default the next time you log in to your Windows account.
You are now signed in to your Windows account.