To begin the setup process for LastPass using Azure AD, capture both the Connection URL and Provisioning Token from the LastPass Admin Console.

Before you begin: It is required that you enable the “Permit super admins to reset Master Passwords” policy for at least one LastPass admin (who is also a non-federated admin, if you are setting up federated login) in the LastPass Admin Console. This ensures that all LastPass user accounts can still be recovered (via Master Password reset) if a critical setting is misconfigured or changed for after setup is complete.

Tip: Open a text editor application so that you can save the values that will be used to connect LastPass and Azure AD.

1. Log in and access the Admin Console at https://admin.lastpass.com/.
2. Go to Users > Directories.
3. Select the Azure AD tab.
4. Copy the URL and paste it into your text editor.
   Remember: You will be using this value in later steps.

5. Click Create Provisioning Token to generate it, then immediately copy the Token and paste it into your text editor.
   Remember: You will be using this value in later steps.
   Warning: Please note that if you have already established a token in Azure AD, then selecting Reset Provisioning Token will invalidate the previous token, and will require you to update Azure AD with the new token.

   

   Troubleshooting: If you navigate away from the Azure AD tab before the Provisioning Token has been copied, you will need to generate a new one by selecting Reset Provisioning Token.