HELP FILE

Use Toopher Authentication (not available for new users)

    Toopher is an authentication application that is no longer accepting new users due to its acquisition by Salesforce. Current users can still use Toopher while Salesforce continues to support it.

    Note:

    Feature availability may vary depending on your account type.

    For LastPass admins, it is recommended that you complete the steps for enabling multifactor authentication in the Admin Console.

    Step #1: Set up and configure Toopher for your LastPass account

    About this task:
    Restriction: The steps below are only available for existing Toopher users.
    1. Log in to LastPass and access your vault by doing either of the following:
      • In your web browser toolbar, click the LastPass icon active LastPass icon and select Vault or Open My Vault.
      • Go to https://lastpass.com/?ac=1 and log in with your email address and master password.
    2. Select Account Settings in the left navigation.
    3. Select the Multifactor Options tab.
    4. Select the Edit icon Edit option for Toopher Authentication.
    5. For the Enabled drop-down menu, select Yes.
    6. For the Permit Offline Access drop-down menu, choose one of the following:
      • Select Allow if you want to allow access to LastPass even when you are offline. This will store an encrypted vault locally so you can log in without using multifactor authentication in case of a connectivity issue.
      • Select Disallow to prevent offline access, which requires the use of multifactor authentication and to be connected to the Internet when using LastPass.
        Important: If this option is selected and you are not connected to the Internet and/or https://lastpass.com is not available, you will be unable to access your vault. Learn more about offline access.
    7. When finished, select Update.
    8. Enter your master password, then select Continue.
    9. Open the Toopher application on your mobile device, then tap Pair this device with a Toopher-enabled service. This will generate a unique 2-word pairing phrase.
    10. Back on your web browser, enter the unique pairing phrase and click OK.
    11. On your mobile device, tap Allow on the Pairing Request screen.
    12. Back in your web browser, click OK on the confirmation message that your settings have been successfully updated.
    Results: You have enabled Toopher for multifactor authentication to protect your LastPass vault.

    Step #2: Log in to LastPass using Toopher authentication

    You can log in and access your LastPass vault from a desktop or mobile device.

    Restriction: The steps below are only available for existing Toopher users.

    Log in from the desktop and authenticate

    1. Open the authenticator app on your mobile device.
    2. Log in to LastPass and access your vault by doing either of the following:
      • In your web browser toolbar, click the LastPass icon active LastPass icon and select Open My Vault.
      • Go to https://lastpass.com/?ac=1 and log in with your email address and master password.
    3. If prompted, complete steps for multifactor authentication (if it is enabled for your account).
    4. On the Toopher authenticator screen, click Allow to authenticate.

      Toopher authenticator screen

    5. If desired, toggle on the switch for the Trust this computer for 30 days setting and provide a computer name in the LastPass authentication prompt. Otherwise, click Authenticate Login.

      Learn more about managing your trusted devices.

    Results: You have now logged in to LastPass and authenticated using the multifactor option configured for your account.

    Log in from a mobile device and authenticate

    1. On your iOS or Android device, open the LastPass Password Manager mobile app.
    2. Enter your username and master password, then tap or select Log In.
    3. When prompted for multifactor authentication, your default multifactor option is served (if multiple). If desired, you can tap or select Use Alternate Multifactor, then select your desired multifactor option from the list at the bottom.

      Note: If you are part of a company account and a policy has been enforced to only allow one multifactor option, the "Use Alternative Multifactor" section will not be displayed.

    4. Follow the prompts to authenticate, which will vary depending on how multifactor authentication is configured for your account (e.g., 6-digit passcode, SMS code, push notification, voice call, etc.).
    5. If desired, you can toggle on the switch for Trust this device so you are not prompted to authenticate within the next 30 days. Otherwise, tap or select Next to continue.

      Prompt to authenticate on mobile

    Results: You have now logged in to the LastPass Password Manager mobile app and authenticated using the multifactor option configured for your account.

    About using multiple multifactor authentication options

    Please note that if you have more than one multifactor authentication option enabled for your account, you must select your desired default authentication option from the drop-down menu at the bottom of your Multifactor Options window in order to be prompted to authenticate with your preferred option when logging in to LastPass.

    Disable authentication for a new or lost device

    If your phone number has changed or the mobile device used for authentication is lost, you can disable multifactor authentication via email so that you can log in to your LastPass account.