HELP FILE

Use the LastPass Authenticator app

Use the LastPass Authenticator app

    The LastPass Authenticator app is a multifactor authentication app for iOS and Android that can be used for authentication when accessing your LastPass vault, assigned SSO apps, third-party apps or websites, and/or your LastPass workstation.

    What is the LastPass Authenticator app used for?

    The LastPass Authenticator app is a mobile app that can be used for multifactor authentication (sometimes referred to as two-factor or two-step verification) for any online account you create (on any website, not jut for LastPass).

    Once enabled, the LastPass Authenticator app adds an extra layer of protection on top of your standard username and password for that website. When you log in, you are using something you know and something you have to prove it's really you.

    Here's how it works:

    1. When you create an account on a website with a username and password, the password is something you know.
    2. If you choose to enable multifactor authentication for your account, you are guided through pairing an authenticator app (or security key) with your account. The authenticator app or security key is something you have.
    3. Going forward, you will log in to your account with your username and password (something you know), and when prompted, use your authenticator app or security key to verify it's you (something you have).

    The authentication methods available (e.g., push notifications, TOTP codes, etc.) will vary depending on the features included in the authenticator app or security key you're using.

    Tip: If you have a LastPass account, you can use passwordless login, which allows you to leverage the LastPass Authenticator app instead of entering a master password to access your vault, SSO apps, and/or workstations.

    Features and compatibility

    The LastPass Authenticator app supports various different authentication methods:
    • One-tap push notifications
    • Time-based 6-digit codes (TOTP codes)
    • SMS passcode (6-digit code sent via text message)
    • Phone call via Call Me (available only when the LastPass Authenticator app is enabled as a multifactor option to protect your LastPass vault – learn more)
    • YubiKey security key (supported on USB, USB-C, and Lightning ports and/or NFC-enabled key)

    The LastPass Authenticator app is also TOTP compliant, meaning it is compatible with all apps and websites that support Google Authenticator. That means you can conveniently manage multifactor authentication for multiple services, all from LastPass.

    Restriction: If you have a LastPass Teams or LastPass Business account, the ability to perform these actions may be limited or prohibited due to policies enabled by your LastPass admin.