LastPass.

Simplify Password Security. Protect Every Login. Reduce Access Risk.

Cloud-based password and identity management solutions that help organisations secure credentials, reduce password-related risk, and give employees simple, secure access to the apps and accounts they need.

About.

LastPass is a password and identity management provider designed to help organisations reduce credential risk, simplify access management, and improve security without adding unnecessary friction for users.

Its cloud-based password manager allows employees to generate, store, share, and manage passwords securely across devices. For IT and security teams, LastPass provides centralised admin controls, user management, policy enforcement, reporting, and integrations with identity providers such as Microsoft Entra ID and Okta. The uploaded enterprise overview also highlights more than 100 customisable policies, flexible privileges, and detailed reporting for scalable password management across growing organisations.

LastPass also supports a zero-knowledge security model, meaning encrypted vault data is designed to remain private from LastPass itself. Its security documentation states that vault data is protected with AES-256 encryption and PBKDF2-SHA-256 hashing with salting, with decryption taking place on the user’s device.

By combining password management, credential monitoring, secure sharing, MFA, and SaaS visibility, LastPass helps organisations improve security hygiene, reduce the risk of weak or reused passwords, and support more consistent access control across the business.

Key Capabilities.

  • Secure password vaults for employees and teams
  • Password generation, storage, autofill, and cross-device access
  • Secure sharing of passwords, notes, and folders
  • Centralised admin controls and user management
  • Customisable security policies and flexible privileges
  • Integration with identity providers including Microsoft Entra ID, Okta, and other IdPs/IAMs
  • Security dashboard and password health monitoring
  • Dark web and breach monitoring for exposed credentials
  • Multi-factor authentication to strengthen access security
  • SaaS Monitoring and SaaS Protect for visibility and control over app usage
  • Policy-based app control for approved, warned, or blocked SaaS applications
  • Credential risk detection for weak, reused, breached, or compromised passwords
  • Detailed reporting and audit logs to support compliance

Features

  • Secure Password Management: Generate, store, autofill, and manage passwords from one encrypted vault across devices.
  • Zero-Knowledge Security: Protect vault data using a security model where only the user can decrypt their stored information.
  • Centralised Administration: Give IT teams control over users, policies, permissions, and reporting from a single admin console.
  • Secure Password Sharing: Enable teams to share credentials safely without exposing passwords through insecure channels.
  • Credential Hygiene: Identify weak, reused, breached, or compromised passwords and prompt users to strengthen them.
  • SaaS Visibility and Control: Discover SaaS usage, reduce Shadow SaaS risk, and control access to approved, warned, or blocked applications.
  • Compliance Support: Use reporting, audit logs, access controls, and password policies to support frameworks and requirements such as Cyber Essentials, SOC 2, HIPAA, and GDPR.
  • User-Friendly Access: Help employees log in quickly and securely from anywhere, reducing password frustration and unnecessary IT support requests.

 

Compliance and Trust

LastPass helps organisations support compliance by improving password security, access control, and audit readiness. Its Cyber Essentials resource maps LastPass capabilities to key access requirements, including account lockout support, unique passwords, secure password storage, credential compromise monitoring, password generation, and MFA for administrative and internet-accessible accounts.

With SaaS Protect, organisations can also generate audit-ready reports, track app usage, monitor policy actions, and support compliance requirements such as SOC 2, HIPAA, and GDPR.

Resources.

• SaaS Protect Product Overview
• Cyber Essentials LastPass
• LastPass for Small and Scaling Businesses
• LastPass for Emerging and Mid-Size Enterprise
Strengthen password security, reduce credential risk, and give your users a simpler way to access the tools they need. Speak to Secon about how LastPass can support your organisation’s identity and access security strategy.
Speak with Our Team