LastPass Now Supports Transakt Multifactor Authentication

By October 23, 2013 Product Updates 32 Comments

In an effort to continue bringing great new technology to our users, we’ve added support for Transakt to our family of multifactor authentication options.

Transakt is a mobile app developed by Entersekt that provides banking-grade multifactor authentication via your mobile device. Transakt adds a second authentication layer to your LastPass account, allowing you to approve your login by responding to a simple Accept or Reject prompt directly on your smartphone or tablet.

With the ever-increasing number of online and mobile accounts amongst today’s consumers, attacks are at an all-time high as advanced technology capabilities are used to steal valuable information and personal data. Transakt protects you against threats such as phishing, man-in-the-middle, man-in the-browser, and replay attacks. It’s free to install and a snap to configure for use with LastPass.

Getting Started with Transakt

After you have completed the LastPass installation, do the following:

  1. On your mobile phone or tablet, go to
  2. Install the Transakt app.
  3. On your computer, go to My LastPass Vault and log in using your email address and your LastPass master password.
  4. From the Actions menu, click Settings.
  5. Click the Multifactor Options tab and select Transakt.
  6. From the Transakt Authentication list, select Enabled. A popup screen displays a unique sign-up code:
  7. Open the Transakt app.
  8. In the Introduction screen, click Let’s begin. In the Transakt Signup screen, do either of the following:
    Click Scan code and scan the code displayed on your computer screen.
    Click Enter code and type in the eight-digit code.
  9. On your computer, click OK when you receive the message that Transakt authentication has been successfully set up.
  10. On the Multifactor Options page, click Update.
  11. When prompted, enter your LastPass master password.
  12. Log out of LastPass. The next time that you log in to LastPass, an authentication request will be sent to your Transakt app and you can simply click Accept.

Let us know in the comments below if you give Transakt a try!


    • Seaotter647 says:

      Can anyone confirm that Transakt, like Duo and Toopher, can only work with one mobile device at a time. Consequently, if two people use the same LastPass account, they cannot each use their own mobile devices as the second authentication factor?

      • Amber Gott says:

        Yes, this seems to be the case, at least when using the “push” feature with LastPass. You might be able to use OTPs on the second device, but we have not fully tested this scenario.

      • Seaotter647 says:

        Please test it. My wife could have the “push” feature and I could use the one time password feature. I would use Transakt if that worked.

    • Anonymous says:

      I have LP Wallet on my iPad, but it only accepts a password as normal. Is the mobile app Transakt aware?

    • Anonymous says:

      bug on Ubuntu 13.10 , Chrome & Lastpass 3.0.0 :
      1. the icon stay black, as there was not conenction on the server
      2. the sites are not reported when click on the icon, and the form stay blank, even if sites were filled in before v3.0.0 …

    • Anonymous says:

      Transakt worked well enough on web/PC logins. I did have to manually activate the Transakt app on my Windows Phone device otherwise I wouldn’t receive notifications.

      Transakt seemed to do nothing for mobile LastPass. In fact, after entering my master password, I eventually get a message that says “Multifactor authentication required! Upgrade your browser extension so you can enter it.” which is a very perplexing message indeed.

    • I don’t necessarily agree. The info about the account is stored centrally, and I have to snap a QR code every time I sign in?

    • Anonymous says:

      SQRL will be the answer we are all looking for. Google SQRL for more information.

    • Steph says:

      How can I login, when my Phone is offline? Where would I enter the OTP?

      • At login Lastpass displays a dialog:
        “Please complete multifactor authentication on your phone or mobile device.
        Alternatively, enter a passcode in the box below:”

        There is a textbox where you can enter your OTP.

      • Steph says:

        On all my browsers (Safari,Firefox,Chrome) on OSX this text box doesn’t appear. And the text is also just “Please complete multifactor authentication on your mobile device.”

      • Amber Gott says:

        Sorry to hear of the trouble, Steph. Are you seeing the prompts to accept or reject the login on your mobile device?

      • Steph says:

        If the mobile device is online the prompt works, yes. But if I take the phone offline, as it would be if I’m abroad (no data roaming), I should be able to enter the OTP. No text box -> no OTP…

      • Anonymous says:

        The OTP textbox does not appear on browser plugins. It only appears when you login at the lastpass website.

    • mxx says:

      hmm..I have a concern with the way Transakt works.
      What if I lose my phone and try to login to LastPass. Somebody who has possession of my phone(assuming no pin/password lock) can simply click ‘Reject’ and prevent me from logging in?

      Seems like a disaster waiting to happen.. :/

      • I really hope you do not lose your phone, but if it does happen you can always disable Multifactor authentication on LastPass and register your new phone with Transakt following the same steps :)

      • mxx says:

        Herman, but I can’t disable 2-factor auth because I can’t login into LastPass account because somebody is actively pressing Reject…

        If a device is actually lost or broken or has pin/password situation is slightly different in that LastPass won’t get an active Reject signal…

      • If you reject the 2-factor auth message you will get the following alert:
        “Multifactor authentication failed!
        Would you like to disable multifactor authentication?”

        You can then disable 2-factor authtentication using LastPass’s validation process.

      • mxx says:

        Ok, then I guess it’s not as bad as I thought. :)

      • Anonymous says:

        If you can disable multi factor authentication, what is the point of it?

        If you choose to disable multi factor authentication, the fall back meganism to validate your identity relies on your email. Which is a plain text transferred over the internet.

        I like the idea of a list of pre-generated codes (like google uses when you use 2-factor auth) better than fall back on email.

        At east, I would like the option to disable the ability to disable 2-factor authenication using emali.. – get my drift?

    • OTP generation should only be used if you do not receive the authentication message (for example when you do not have network coverage/Wifi connection)

    • Lars says:

      Whats the deal with the LastPass OTP generation on the Transakt app?
      The OTP is only 8 characters long and doesn’t seem to work.
      Am I incorrectly assuming it’s for LastPass (despite it saying so on the app)?

    • So, Transakt is ‘instead’ of Google Authenticator right? Instead of typing in the whole number, you just press Accept or Reject?

    Get LastPass Now! Download