LastPass Detailed Expert Review
LastPass has multiple layers of security, comes with more additional features than most competitors, and is pretty cheap.
To ensure the safety of all user data, LastPass uses military-grade encryption (256-bit AES), has a zero-knowledge policy, and provides multiple two-factor authentication options (2FA) as well as biometric logins.
LastPass also offers many additional features, including:
- Secure password sharing — share passwords with one other user (free plan), and share passwords with multiple users (paid plan).
- Security dashboard — analyze password vault for old, weak, and duplicate passwords, and monitor the dark web for leaked accounts.
- Automatic password changer — automatically change passwords for supported sites without having to visit those sites and manually change passwords.
- Multiple account recovery options — access password vault even if you lose your master password.
- Emergency access — provide trusted contacts with access to the vault in case of an emergency.
- Country restriction — select from which countries you can access your vault.
- Credit monitoring (US only) — monitor credit reports for suspicious activity and prevent identity theft.
All of LastPass’s features are very easy to understand and use — during my tests, I had no problems adding items to my vault, auto-saving and auto-filling logins, setting up two-factor authentication, or using any of LastPass’s extra tools.
However, I’d like to see LastPass improve a couple of features. Importing passwords to the LastPass vault isn’t very intuitive, the automatic password changer supports only around 70 sites (in comparison, Dashlane’s automatic password changer works on over 300 sites), and contacting LastPass’s customer support should be much easier.
LastPass offers a really good free plan — it includes unlimited password storage across unlimited devices (this will soon change to unlimited devices on either mobile or computer devices) as well as one-to-one password sharing. And LastPass Premium and LastPass Families are both an excellent value, adding many extra features that make LastPass one of the best password managers out there.
LastPass provides a 30-day free trial for its paid plans, so you can give it a try risk-free and see if it’s the best choice for you.
|Overall Rank||#2 out of 52 password managers|
|Free Plan||Unlimited passwords, unlimited devices|
|Pricing||Starting at /year|
|Money-Back Guarantee||30-day free trial|
|Operating Systems||Windows, Android, Mac, iOS, Linux|
LastPass Security Features
LastPass has all of the essential security features needed to keep user data secure, including:
- 256-bit AES encryption.
- Zero-knowledge architecture.
- Multiple 2FA (two-factor authentication) options.
256-bit AES encryption is used by high-security establishments like banks and militaries, as this type of encryption has never been broken. Additionally, all of LastPass’s user data is encrypted and decrypted on the device level, and a user’s master password (which is used for encrypting and decrypting data) isn’t stored on LastPass’s servers.
Because LastPass uses local encryption, not even company employees can access your password vault — which makes LastPass a “zero-knowledge” password manager. Finally, two-factor authentication uses a second factor to verify user identity, which prevents anyone from accessing your data on a different device (even if they somehow got a hold of your master password).
LastPass also has some additional security tools, such as:
- Password security auditing.
- Secure password sharing.
- Multiple account recovery options.
- Emergency access.
While the top password managers on the market offer password security auditing and password sharing, not a lot of competitors have account recovery options and emergency access. Account recovery enables users to access their LastPass password vault if they forget their master password — many password managers don’t offer account recovery, so if you lose your master password, there’s no way to get access to your passwords and other data.
LastPass offers the most recovery options out of all top competitors — including SMS recovery and a recovery one-time password. LastPass’s emergency access is another useful feature that enables you to set up a trusted contact who can enter your LastPass vault in case of an emergency.
Overall, LastPass is one of the most secure and feature-rich password managers on the market. It has all of the essential features to protect user data, and it also provides several extra tools that allow users to securely share passwords, check the strength of their passwords, and regain access to their vault in case of a lost master password.
LastPass has a web vault and a desktop app for Windows and Mac — both the web vault and desktop apps are intuitive, and adding, customizing, and editing entries is very simple.
LastPass lets users save a wide range of entries, including passwords, notes, addresses, payment cards, bank accounts, driver’s licenses, passports, social security numbers, insurance policies, health insurance info, memberships, Wi-Fi passwords, email accounts, instant messenger data, databases, servers, SSH keys, and software licenses. Because these pre-made entries don’t have customization options, LastPass also offers an option to create a fully customized item.
LastPass also lets users create as many folders as they want (and there’s an option to add folders to subfolders) — this makes it very easy to organize all of your passwords and other data.
Manually adding new entries to the vault is pretty simple. All you have to do is click on the red ‘+’ button in the right-hand corner of the dashboard, choose which type of item you want to add, and type in your information. However, keep in mind that it’s much easier to add passwords using the browser extension — the extension offers to automatically save login credentials every time your log into a new online account.
LastPass also offers several settings for securing and organizing entries. For example, when editing items, you can enable/disable auto-login and auto-fill for specific passwords directly from the vault — sometimes it’s better to disable these functions for security reasons (for example, on banking sites).
Users can also choose to set up a master password reprompt for passwords and other data, and it’s possible to select the language for auto-fill (20+ different languages are available for most entries, including bank account and payment cards). As for organizing passwords, you can add entries to favorites, which makes it very easy to find the entry you’re looking for.
One of the things I like the most about LastPass is the auto-change password feature — it lets you automatically change some passwords in LastPass without having to log into websites and change passwords manually. The automatic password changer is available for about 70 popular sites, like Facebook and Twitter, and you can access this feature when editing passwords. If you don’t see this feature, it means that the site doesn’t support it.
LastPass’s auto-change password feature is very easy to set up and use — I just wish LastPass made this feature available for more websites. Most other password managers don’t include a similar feature, except for Dashlane (and Norton’s 360 antivirus). LastPass’s automatic password changer is just as easy to use as Norton’s and Dashlane’s automatic password changer, but Dashlane’s is a bit better than the rest — it can be used on more sites (around 300) and it can change multiple passwords with one click. With LastPass, you need to change each password one-by-one. Still, this is a great feature, and I expect to see LastPass including more sites and more auto-change options in future updates.
LastPass’s password vault is one of the best I’ve ever tested. I’m a huge fan of LastPass’s sorting options, I found it very simple to add and change entries, and I think it’s really good that LastPass lets users create customized items. I’m also a huge fan of LastPass’s automatic password changer that lets users automatically change passwords for around 70 sites.
Because LastPass’s vault is so user-friendly, it’s a great choice for beginner or non-tech-savvy users. But also because there are lots of different options for customizing and organizing passwords, LastPass is a good option for advanced and technical users, too.
I really like LastPass’s browser extension. It’s available for Chrome, Firefox, Safari, Opera, Edge, and even Internet Explorer.
The browser extension lets you use all of LastPass’s essential features — you can search your entire password vault, view all your stored items, add or edit entries, or launch a site. You can also import and export passwords and other data using the browser extension.
LastPass’s browser extension also has a built-in password generator, and there’s a button for LastPass’s Security Dashboard — but clicking on it will only take you to the web vault.
During my tests, LastPass’s browser extension worked really well. I was especially impressed with the auto-save and auto-fill functions. Every time I logged into an online account for the first time, LastPass offered to save my credentials. And every time I navigated to a login field, LastPass automatically filled my username and password.
I tested LastPass’s auto-fill feature on many of my online account login pages, and it worked perfectly each time. If I needed to use a different account — or if for any reason LastPass couldn’t recognize the site — I could click the LastPass logo in the login fields and select the login I needed.
Overall, LastPass’s browser extension is one of the best I’ve ever used. The auto-save and auto-fill functions worked perfectly. I also like that you can access all of LastPass’s essential features from the extension, including importing, exporting, adding, editing, and generating passwords. LastPass’s browser extension is very user-friendly, and even complete beginners will be able to quickly figure it out.
LastPass’s password generator is easy to use and offers a lot of different ways for users to create secure passwords. You can access the password generator from the main dashboard or from the browser extension.
I don’t particularly like that you can’t open the password generator when adding new passwords to the LastPass web vault. Instead, you need to click on Advanced Options > Generate secure password, or go to the Security Dashboard, view passwords that are at-risk, and click on the link to the generator. That said, locating and using the generator in the extension is very easy.
I tested LastPass’s generator by signing up for several new online accounts and using the password generator to generate each new password. During each signup, I just had to click on the LastPass logo in the password field (or open the extension and click on the generator), and LastPass would generate a complex password. The default password length is 12, but you can generate passwords up to 99 characters long. The passwords can contain uppercase letters, lowercase letters, numbers, and symbols.
I really like that LastPass’s password generator can also generate passwords that are ‘easy to say’ and ‘easy to read’. Passwords that are easy to say have no special characters or numbers, and passwords that are easy to read have no confusing characters (like “O” vs. “0” or “l” vs. “I”). Some of my passwords need to be easy to read — like my Wi-Fi password which gets shared with guests all the time, so I think this is a really cool feature.
Overall, LastPass makes creating secure passwords simple. The password generator pops up anytime you click on the LastPass logo in the password field, and it offers a lot more functionality than most competing password managers. I especially like that LastPass’s password generator offers helpful options like generating passwords that are ‘easy to read’ and ‘easy to say’.
Two-Factor Authentication (2FA)
Two-factor authentication (2FA) requires users to verify their identity with a second form of authentication, like a code or a fingerprint scan. So, whenever you want to log into your account, you’ll need to provide your master password and either enter a code or scan your fingerprint. This added layer of security ensures that a hacker can’t access your password vault even if they somehow knew your master password.
LastPass offers a wide variety of 2FA options. LastPass is compatible with third-party authenticator apps like Google Authenticator, Microsoft Authenticator, Duo Security, Toopher, and Grid. However, keep in mind that Toopher has been acquired by Salesforce and is no longer accepting new users, but users who installed the Toopher app before the acquisition can still use it with LastPass.
All LastPass plans also include LastPass’s authenticator — it supports 3 different authentication methods, including 6-digit passcodes, SMS Codes, and push notifications.
LastPass’s premium plans also include compatibility with the USB authenticator YubiKey and fingerprint and smart card readers.
Setting up LastPass’s 2FA is very easy. You can find the list of supported options by clicking on Account Settings > Multifactor Options. When you choose an option that you want to use, just click on the Edit button, and LastPass will then provide you with setup instructions.
For my tests, I first enabled two-factor authentication with Google Authenticator — all I had to do was scan a QR code, enter my master password, and type in the verification code from Google Authenticator. And that was it! The next time I wanted to log into my LastPass account, I had to enter both my master password and a code generated by Google Authenticator.
Next, I wanted to enable LastPass Authenticator — when I chose this option in the Multifactor Options tab, a new window appeared with all of the instructions. I first had to download LastPass Authenticator from the Google Play Store. After downloading the app to my Android phone, I had to scan a barcode and then set up a backup option (backup text message). To set up this backup option, I entered my phone number and then got a text message with a verification code. Once the backup option was set up, all that was left for me to do was click on the Activate button on the instructions screen.
I then navigated to LastPass’s login fields, and as soon as I typed in my master password, LastPass Authenticator sent me a push notification to accept the login request.
LastPass Authenticator can be used as a code generator for supported sites, too. For example, I connected LastPass Authenticator with my Google account — so to be able to sign into my Google account, I had to use LastPass Authenticator as a second factor of authentication.
LastPass also lets users set up trusted devices — if you don’t want to use two-factor authentication on a specific device, you can set up a trusted device, and LastPass won’t ask you to type in a code or use a fingerprint on that device for 30 days.
Overall, LastPass’s 2FA options are among the best on the market. LastPass supports a huge number of authenticator apps, as well as other options like USB authentication and fingerprint/card reader. And LastPass offers its own authenticator app which users can use to log into their LastPass vaults and secure other accounts that support two-factor authentication.
LastPass makes it easy to share passwords and other data with other LastPass users.
To share an item, simply click on the sharing button next to each entry. A new window will appear, and all you have to do then is enter the email address of the person you want to share the entry with. You can also choose whether or not the recipient can view the password.
You can also share one or more items by clicking on the red ‘+’ button in the Sharing Center.
To test LastPass’s sharing function, I shared a couple of passwords with a colleague who already had a LastPass account. After receiving an email from LastPass which informed him of the password share, my colleague logged into his LastPass account and accepted the passwords I had shared with him. Because I chose not to let my colleague view the shared passwords, he could only use them (without seeing what the actual passwords were).
Apart from enabling you to hide shared passwords, LastPass also lets users revoke access to an entry at any time. All you have to do is go to the Sharing Center and click on the ‘x’ button next to an entry, and the password recipient will no longer have access to that entry.
One of the best things about LastPass’s password sharing features is that even LastPass Free lets you share passwords, but only with 1 person. To share passwords with multiple people, you need LastPass Premium. LastPass Families also lets you share an unlimited number of folders with up to 5 family members.
Overall, LastPass’s password sharing function is really good. Users can easily share one or more passwords with other LastPass users — and password sharing is even available on the free plan! While free LastPass users can share passwords with 1 other user, paid users can share entries with multiple users. LastPass makes password and data sharing very simple, and I really love that users can conceal shared passwords (so recipients can use the passwords, but not actually see them) and revoke access at any time.
LastPass’s Security Dashboard consists of a security score and dark web monitoring. The security score audits the strength of all the passwords in the LastPass vault, whereas dark web monitoring alerts users if the emails stored in the vault have been compromised in a data breach.
The security score shows you if you have any old, weak, or repeated passwords in your LastPass vault, and it also lets you know if any password have been potentially breached. LastPass then assigns you an overall security score of all of your passwords. You can increase this score by strengthening/changing those passwords, and you can also increase this score by enabling two-factor authentication.
For my tests, I added several weak and duplicate passwords to my LastPass vault, and the security score feature identified all of them. To increase my security score, LastPass gave me the option to launch the sites where weak passwords had been found and change them manually.
However, I was a bit surprised that LastPass didn’t offer to change some of my passwords automatically with the automatic password changer. I really like LastPass’s automatic password changer, and I do hope that the company will soon make this feature available in the Security Dashboard as well.
After manually changing my weak passwords, all that was left for me to do was to enable dark web monitoring. LastPass’s dark web monitoring uses Enzoic’s database (previously known as PasswordPing) to see if any of the stored emails in a vault have been leaked on the dark web.
During my tests, LastPass alerted me that one of my online accounts had been compromised in a data breach, and it also informed me which data was leaked (email, password, phone number, and name). I could then manually change the password for the compromised account.
None of these features are particularly unique to LastPass. Competing password managers like Keeper and Dashlane have similar features — auditing your vault for weak passwords and scanning the dark web for potential data breaches. That said, I think LastPass’s Security Dashboard is really easy to use and highly intuitive.
Overall, I really like LastPass’s Security Dashboard — it made it very easy for me to monitor how good my overall password security practices were and quickly make any changes if necessary. During my tests, LastPass identified all of my weak passwords, and it also alerted me that one of my test emails was involved in a data breach. While LastPass’s Security Dashboard isn’t a unique feature, it’s much more intuitive and easier to use than most competitors.
LastPass offers many options to recover your LastPass account if you forget your master password. Some password managers offer one or two account recovery options, but LastPass offers far more recovery options than most competitors — and all of them are very easy to set up and use.
LastPass offers the following account recovery options:
- Mobile account recovery. If you forget your master password, you can easily confirm your identity using either Touch ID or Face ID on the mobile app login screen, and then set a new master password. This works for both iOS and Android devices. As soon as you download the LastPass mobile app, LastPass will prompt you to enable biometric logins — all you have to do is scan your fingerprint or face.
- Master password hint. If you lose your master password, LastPass can send you a master password hint to the email address registered with your LastPass account. You can set up a master password hint when creating a LastPass account, when changing your master password, or you can manually enter the hint in Account Settings.
- SMS Recovery. You can set up a recovery phone in Account Settings, and if you forget your master password, LastPass will send you a code to the provided phone number.
- Restore your previous master password. You can recover your account with your old master password, but only if the password change was made within the last 30 days. However, your account will be restored to how it was when you changed passwords, meaning that some recent data may be lost.
- Recovery one-time password. Every time you log into LastPass via a browser extension, LastPass creates a recovery one-time password which can be used to reset your master password.
I really like all of LastPass’s account recovery options — I tried all of them, and I was able to recover my account and set up a new master password in 1 minute or less, no matter which recovery option I used. LastPass is one of the rare password managers to offer so many account recovery options (many password managers like Bitwarden and Sticky Password don’t have any account recovery options). And if you ever happen to forget your master password, LastPass makes it incredibly easy for you to gain access to your vault.
Emergency access lets you assign a trusted contact to access your LastPass vault if necessary. To set up emergency access, you only have to type in the email address of your trusted contact and select a waiting period — from “immediately” up to “30 days”.
I tested this feature by assigning my best friend as an emergency contact, and I chose to immediately give him access to my vault. My friend received my invitation, accepted my request, and was immediately able to see all of my LastPass entries in his LastPass vault.
If you set a longer waiting period, you can deny access to your LastPass vault within the specified waiting period. However, you can also revoke access to your vault at any time.
I would like to see LastPass do something like Password Boss and include emergency access for specific logins and details — so emergency contacts can only view selected logins, not the entire contents of the LastPass vault. But I don’t mind LastPass’s approach. It was very easy to set up and use LastPass’s emergency access, and I could choose to deny my friend access to my vault at any point.
In addition to the features described above, LastPass also has useful extras, like:
- Country restriction.
- One-time passwords (OTPs).
- Credit monitoring.
LastPass’s country restriction feature lets you choose from which countries you’re allowed to access the LastPass vault. By default, you can access your LastPass login from any country in the world, but if you want to add another layer of security to your account — potentially preventing hackers from other countries from gaining access to your vault — you can set up country restrictions.
However, it’s important to remember that you need to update this setting when traveling to another country, otherwise you won’t be able to access your vault when you’re abroad. Also, if you often use a VPN, you should make sure that the countries with the server locations you connect to can access your vault.
As an extra security measure, LastPass also has the option to generate one-time passwords which are used for logging into the LastPass account from a device you don’t trust. One-time passwords are generated after you log into your account, and you can print or write them down. When you’re logging into your LastPass account from an unsecured device, you then don’t have to use your master password — instead, you can log in with the previously generated one-time password. Keep in mind that you can use each one-time password only once. So, even if someone found out your previously used one-time password, they wouldn’t be able to enter your LastPass vault.
LastPass also offers credit monitoring for all US users. LastPass monitors your credit reports, notifying you of any changes that may indicate that your identity is compromised. Credit monitoring is a free feature, but you can also upgrade to the premium version of the service and get more comprehensive coverage (including help with resolving any issues with your credit score).
I really like these additional features. LastPass is the only password manager that provides country restrictions, which can prevent hackers from other countries from accessing user vaults. I also like that you can generate one-time passwords for logging into your LastPass account from a device you don’t trust, which prevents keyloggers from capturing your master password. And LastPass’s free credit monitoring is a useful addition — but it’s only available for US users.
LastPass Plans and Pricing
LastPass offers 3 plans for personal use and 4 plans for business use. All of LastPass’s plans are billed annually — there’s no monthly plan, and there’s no money-back guarantee.
However, LastPass offers a free version for individual users, and all of its paid plans include a free trial. LastPass’s plans for single users and families have a 30-day free trial, whereas all of LastPass’s business plans have a 14-day free trial.
LastPass Free — Unlimited Password Storage & One-to-One Password Sharing
LastPass Free is one of my favorite free password managers on the market today. It has a huge range of features that many other free password managers don’t include, such as:
- Unlimited password storage on unlimited devices (soon to change).
- Secure notes storage for credit cards, documents, and other sensitive info.
- One-to-one password sharing.
- Password generator.
- Password auto-save and auto-fill.
- Two-factor authentication.
- LastPass Authenticator.
- Free credit monitoring/identity theft protection.
LastPass Free currently offers syncing across an unlimited number of devices, but this will change soon — LastPass has announced that free users will still be able to sync data across an unlimited number of devices, but only either on mobile or computer devices.
Mobile users will then be able to use LastPass on Android phones, iPhones, Android tablets, iPads, and smartwatches. And users that choose to access LastPass from their computers will be able to use LastPass on Windows, Mac, and Linux computers, as well as Windows tablets.
Even with this change, LastPass’s free plan will still be more generous than most free password managers, with the exception of Bitwarden — which will continue providing syncing across an unlimited number of both mobile and computer devices.
While LastPass Free is definitely one of the best free password managers out there, it’s worth noting that this plan doesn’t include advanced security features like emergency access, secure cloud storage, or advanced 2FA options. But LastPass’s free version is one of the best choices if you’re looking for a free, feature-rich password manager.
LastPass Premium — Best Value Plan (with One-to-Many Password Sharing & Emergency Access)
LastPass Premium includes all features of the Free plan, plus:
- One-to-many password sharing.
- Security dashboard and dark web monitoring.
- Advanced two-factor authentication options.
- Emergency access.
- 1 GB secure cloud storage.
LastPass Premium is a really good value. It’s the same price as many other password managers that offer fewer features, like RememBear and 1Password. And you can try out all of LastPass’s premium features risk-free with a 30-day free trial to see if it’s the best choice for you.
LastPass Families — Multiple Users and Unlimited Sharing
LastPass’s family plan covers up to 6 users. Along with all of the features in LastPass Premium, LastPass Families also has:
- Family manager dashboard. Easily add and remove members using their email addresses.
- Unlimited shared folders. Grant users shared access to specific password folders. This is a convenient way for individuals or groups to share data.
I like LastPass Families a lot, making it to the list of best family password managers in 2021. The dashboard makes it very easy to manage who has access to shared folders.
The only downside of this plan is that LastPass doesn’t let you add more users. If you need coverage for more than 6 users, I recommend 1Password’s family plan, as it gives the option to add more users for a small fee and has a similar level of security features — making it a more cost-effective option for larger families. That said, if you only need to cover up to 6 people, LastPass Families is a better choice. LastPass’s family plan also has a risk-free 30-day trial. (Read more about LastPass vs. 1Password here.)
LastPass Plans for Business Users — MFA, Teams, Enterprise, and Identity
LastPass MFA only includes multi-factor authentication options and a security dashboard, but for an unlimited number of users. Here’s what’s included in LastPass MFA:
- Standard two-factor authentication.
- Adaptive biometric authentication.
- Contextual authentication policies.
- Allows employees to use biometrics when logging into workstations.
- Detailed authentication reports.
- Security dashboard (but no dark web monitoring).
LastPass Teams covers up to 50 users, and only has standard two-factor authentication out of all of LastPass’s business multi-factor authentication options. This plan also has:
- Easy-to-use admin dashboard.
- Company-controlled password vault for every employee.
- Password generator.
- Auto-save and auto-fill.
- Shared folders.
- Security dashboard and dark web monitoring.
LastPass Enterprise has all of the features included in LastPass Teams, but it covers an unlimited number of users and adds the following tools:
- Over 100 customizable security policies.
- Single Sign-on (SSO) with 1200+ integrated applications and multiple policies supported.
- Extensive SSO reporting.
- API and directory integrations.
LastPass Identity has all of the features included in LastPass MFA and LastPass Enterprise.
LastPass MFA, Enterprise, and Identity also include a dedicated account manager.
LastPass’s business plans are reasonably priced and are definitely worth looking into, making it to the list of best business password managers in 2021. And all of the business plans come with a 14-day free trial, so there’s no risk in trying them out.
LastPass Ease of Use and Setup
Installing and setting up LastPass is very simple. To create a LastPass account, users need to enter an email address and select a master password that is at least 12 characters long, and has at least 1 number, 1 lowercase letter, and 1 uppercase letter. The final requirement for creating a master password is that it can’t be the same as your email address.
LastPass also provides a short explanation on what a strong master password is and advises users to create a password that ‘tells a story unique to you’. LastPass also gives an example of a strong master password (Fidoate!my2woolsox). While I like that LastPass has several requirements for creating a good master password, I was a bit surprised that I could create my account using LastPass’s example password!
Once I entered my email, master password, and master password reminder, I was prompted to install the browser extension. The browser extension installation was quick and easy — taking just one click.
When I installed LastPass’s browser extension, I was immediately taken to LastPass’s web vault. Users can also download desktop apps for Windows (you need to download it from the Microsoft Store) and Mac, but I found it much more convenient to use the web vault. Plus, when you use the web vault, you can access all of your passwords from any computer.
As soon as you open the web vault for the first time, LastPass shows you how to save a password, asks you to try out auto-fill, and provides a brief tour of the vault, which explains what most of LastPass’s features do.
I really like that LastPass includes a quick tutorial on how to use its features — this is very useful for non-technical users. However, I don’t like that LastPass doesn’t offer to import passwords during installation. Still, there are two simple ways to import passwords to LastPass’s vault — you can import your existing passwords from the dashboard or you can use the browser extension. Either way, you can choose from a wide range of import options, like directly importing from your browser or other password managers.
LastPass supports importing data from many major password managers — including 1Password, Dashlane, RoboForm, Sticky Password, and many others. Users can also import passwords from Google Chrome. However, importing passwords to LastPass isn’t as streamlined as I’d like it to be. For instance, after I chose to import my passwords from Google Chrome, LastPass provided me with instructions on how to export my passwords from Chrome. Once I exported my passwords from Chrome, I had to upload the file to LastPass — while this isn’t difficult, I much prefer competitors like Dashlane which provide one-click password import.
I found most of LastPass’s features very easy to understand and use, but I dislike LastPass’s password importing which requires that you first export your existing passwords from another password manager or Google Chrome, and then upload the file with the passwords to LastPass. I also don’t like that there isn’t a download link for LastPass’s Windows desktop app on the official site.
Other than that, I found using LastPass to be very easy. I really appreciate that LastPass provides in-app instructions on how to save passwords, use the auto-fill function, and access all of the other features in the vault. Advanced users will like that LastPass offers a ton of features, and I’m pretty confident that even non-tech-savvy users will find LastPass simple to use.
LastPass Mobile App
LastPass offers mobile apps for both iOS and Android. On both my iPhone and Android, all I needed to do was download the app and enter my email and master password. I could also immediately adjust login settings, enabling LastPass to remember my email address (turned on by default) and master password (disabled by default).
However, when I wanted to enable LastPass to remember my master password on my mobile device, I received a warning that this would decrease my account’s security. Because remembering the master password on mobile devices isn’t recommended, I was a bit surprised that LastPass even offered me this option. And because of the warning I received, I ultimately decided not to let LastPass remember my master password.
As soon as I entered my email and master password, LastPass asked me to authenticate my identity with the LastPass Authenticator (because I had already set up two-factor authentication in my web vault). LastPass then prompted me to turn on biometric logins to unlock my vault, also informing me that I could use biometric logins as an account recovery option.
And this was it — the setup was complete!
I could then view all of my vault’s contents, including passwords, secure notes, addresses, and payment cards. I found it very easy to add, edit, and share items — all of the essential LastPass features are the same on mobile and on the web app.
LastPass’s mobile app also has a secure in-app browser, a security tab, and a Sharing Center. The integrated browser makes logging into online accounts and auto-filling login details easy across mobile sites (keep in mind that you first need to enable auto-fill in the app’s settings). During my tests on both Android and iOS, LastPass’s auto-fill option worked perfectly every time. And I also like that LastPass offers auto-fill for addresses and credit cards, but these features are still in beta and may not always work properly.
The Security tab includes LastPass’s password generator, emergency access, a security challenge which gives you an overall password security score, and a security dashboard which only informs you that you can use this feature on your desktop computer.
Interestingly enough, LastPass’s password generator on mobile devices has a default length of 16 characters, which is longer than the 12-character default length on the web app and in the browser extension. It’s also worth noting that the Sharing Center on mobile is pretty useless for individual users — you can only use it to add shared folders, but this feature is only available for family users.
Overall, I found both LastPass’s iOS and Android apps incredibly easy to use. While the mobile apps are a bit different than the web vault, locating and using all of the features is very simple. Many other password managers either don’t have mobile apps or they have really bad ones, so it’s nice to see LastPass paying attention to its mobile users.
LastPass Customer Support
LastPass has pretty good customer support options for general questions, but contacting the support team is a little difficult. LastPass’s support center has a good collection of training videos, “How To” guides, and FAQs, and there’s also a community forum. LastPass also provides a chatbot on the official website — but the bot is only useful for answering basic questions.
LastPass doesn’t offer phone support, which is often the case with password managers. But I was pretty surprised that I couldn’t locate any direct link to email support from the LastPass website. You are meant to use the FAQ page to search for answers to your questions. If the search results don’t solve your issue, then a link to LastPass’s email support is displayed at the bottom of the page.
You then need to submit your question using a form, and then you’re assigned a case number. I submitted mine as an unregistered LastPass user, and I received an answer that fully answered my question in just over 5 hours. If you purchase a LastPass plan, your wait time will be shorter as paid user cases are prioritized.
LastPass also has three Twitter accounts: one notifying about LastPass service outages and resolved issues, another for providing live support Monday to Friday 9am–5pm ET, and the third posts general blog posts and updates about LastPass.
I couldn’t find a direct link to LastPass’s customer support Twitter account from the website. But I found it by clicking on the Status link on the LastPass website, which took me to the “status update” Twitter account — and then that account linked me to the live support one… not exactly straightforward!
I submitted a question to LastPass’s live support Twitter account outside of working hours and received an answer in about 12 hours, so this option is OK to use for not-so-urgent questions.
I really want LastPass to make its customer support options much easier to access. The email and Twitter support staff both answered my questions quickly and professionally, but I spent too much time and effort trying to find a way to contact them. That said, LastPass’s website has a ton of very helpful information on how to use LastPass, so most people will never need to contact customer support at all. Even if you do need to (and after you find the right email address), you’ll get a detailed and informed answer within a few hours.
Is LastPass a safe, secure, and easy-to-use password manager?
Yes, LastPass is safe, secure, and easy to use. It uses bank-grade 256-bit AES encryption to ensure all passwords are stored safely, it has a zero-knowledge policy, and it includes many advanced multi-factor authentication options for extra layers of security.
LastPass also has several advanced security features — including secure password sharing, password strength auditing, dark web monitoring, emergency access, multiple recovery options, and even credit monitoring for US users.
And LastPass’s interface is very easy to navigate. I had no issue adding, editing, or customizing passwords and other data in the web vault or on the mobile app, and the browser extension made it incredibly easy for me to auto-save and auto-fill logins.
While I really like LastPass, I do have a couple of minor complaints. I’d like to see LastPass improve its automatic password changer to cover more sites and to automatically change multiple passwords at once, like Dashlane’s password changer can. And I’d like to see LastPass provide an easier way for users to import passwords and contact customer support.
That said, LastPass is one of the best password managers on the market. It’s a great choice for both beginner and tech-savvy users, it has a wide range of additional tools that most other passwords managers don’t offer, and it’s pretty affordable. LastPass Free is one of the best free password managers out there, with unlimited storage on unlimited devices (but users will soon have to choose whether they want to use LastPass Free on either mobile or computer devices) and one-to-one password sharing. LastPass Premium adds tons of great features, including emergency access, cloud storage, and advanced authentication features. LastPass Families is also one of the better family plans, coming with a family manager dashboard and unlimited sharing between up to 6 plan members. LastPass doesn’t have a money-back guarantee, but it does have a risk-free 30-day trial on most of its premium plans.
LastPass Review — Frequently Asked Questions
Is LastPass safe?
Yes, LastPass is very safe. LastPass has a zero-knowledge policy, meaning even the LastPass team can’t access, view, or share the data stored in your vault.
And LastPass uses bank-grade encryption (256-bit AES) and TLS certification to protect all data stored in a user’s LastPass vault.
LastPass also includes a range of extra security options to ensure all passwords are safe, including:
- Advanced multi-factor authentication options.
- Touch ID and Face ID verification.
- Options to only allow logins from specific countries.
Along with advanced-level security, LastPass has a lot of features to make web browsing and account logins even safer, like a one-click password changer, password security auditing, dark web monitoring, and even credit reporting (for US users).
Does LastPass have a free version?
Yes. LastPass has a really good free version, which includes:
- One secure vault that can be accessed and managed from multiple devices.
- Unlimited password storage.
- Secure notes storage.
- Password generator.
- One-to-one password sharing.
- Two-factor authentication.
- LastPass Authenticator.
- Identity theft protection/credit monitoring.
It’s worth noting that LastPass has announced some pretty big changes to its free plan. While LastPass Free currently provides syncing across an unlimited number devices, free users will soon have to choose whether they want to use LastPass’s free plan on mobile (Android phones and tablets, iPhones and iPads, and smartwatches) or computer devices (Windows, Mac, and Linux computers, Windows tablets, and the LastPass browser extension).
But LastPass Free is still one of the most feature-rich free password managers available. It doesn’t have some features that I consider necessary, like emergency access, one-to-many sharing, and secure file storage, but it’s one of my favorite free password managers on the market.
Does LastPass have account recovery options?
Yes. In fact, LastPass has the most account recovery options out of any other password manager.
You can recover your LastPass account with:
- Master password hint — receive an email with your pre-set master password hint.
- Mobile account recovery — use fingerprint/face ID on your mobile to confirm your identity.
- One-time recovery password — access your account with a recovery password when using the same computer and browser.
- SMS recovery — receive an SMS with a unique code to reset your master password.
- Reverting to the previous master password — access your vault with your old master password (if the change was made no longer than 30 days ago).
LastPass Premium also includes an emergency access function, which enables you to assign an emergency contact to retrieve the data in your vault if you can’t access it.
Can I share a password from my LastPass vault with other people?
Yes. You can easily share logins and other data from your LastPass database with anyone by sending them an email invite. Users without LastPass will need to create their own LastPass account to access the information you share with them.
One of the cool things about LastPass’s sharing function is that you can share passwords without the recipient being able to view the password — meaning they can use the password without knowing what the password actually is!