Use the LastPass Authenticator app
The LastPass Authenticator app is a multifactor authentication app for iOS and Android that can be used for authentication when accessing your LastPass vault, assigned SSO apps, third-party apps or websites, and/or your LastPass workstation.
What is the LastPass Authenticator app used for?
The LastPass Authenticator app is a mobile app that can be used for multifactor authentication for any online account you create (on any website, not just for LastPass).
Once enabled, the LastPass Authenticator app adds an extra layer of protection on top of your standard username and password for that website. When you log in, you are using something you know and something you have to prove it's really you, which means you are using two-factor or two-step verification. If you are also using biometrics via your authenticator app or security key, you are using something you have AND something you are, which means you are using multifactor authentication, and therefore stronger than two-factor authentication.
Here's how it works:
- When you create an account on a website with a username and password, the password is something you know.
- If you choose to enable multifactor authentication for your account, you are guided through pairing an authenticator app (or security key) with your account. The authenticator app or security key is something you have. If you are using biometrics through an authenticator app or security key, it is additionally something you are.
- Going forward, you will log in to your account with your username and password (something you know), and when prompted, use your authenticator app or security key to verify it's you (something you have and something you are).
The authentication methods available (e.g., push notifications + biometrics, TOTP codes, SMS passcode, etc.) will vary depending on the features included in the authenticator app or security key you're using.
Features and compatibility
- One-tap push notifications + biometrics
- Time-based 6-digit codes (TOTP codes)
- SMS passcode (6-digit code sent via text message)
- Phone call via Call Me (available only when the LastPass Authenticator app is enabled as a multifactor option to protect your LastPass vault – learn more)
- YubiKey security key (supported on USB, USB-C, and Lightning ports and/or NFC-enabled key)
The LastPass Authenticator app is also TOTP compliant, meaning it is compatible with all apps and websites that support Google Authenticator. That means you can conveniently manage multifactor authentication for multiple services, all from LastPass.