InstaSafe | Integrate LastPass Authenticator for Two-Factor Authentication (2FA) in ZTAA

Integrate LastPass Authenticator for Two-Factor Authentication (2FA) in ZTAA

The Administrators of an organization might choose to increase the security posture with InstaSafe's built-in Two Factor Authentication that would prompt users for an OTP delivered to the registered Email ID and mobile number.

Users are encouraged to integrate Authenticator Apps that would provide Time-based OTPs (TOTP) for Two-Factor Authentication. This would effectively eliminate the dependency on mobile networks for SMS OTPs as well as to avoid deadlock scenarios where users can access corporate email (for Email OTPs) only after logging-in to ZTAA.

This Article provides guidance on how to use the LastPass Authenticator App for Two-Factor Authentication (2FA) in ZTAA.

Step 1: Login to the ZTAA Portal

Login to the ZTAA Portal with the credentials provided by the organization's Admins.



In case Two Factor Authentication has already been configured, an OTP will be sent to your registered email ID and mobile number which would need to be entered in order to proceed. 



Depending on the type of deployment setup opted for by the organization, these credentials may either be the Domain Credentials (synced with the corporate IAM) or created locally in the ZTAA Management Console by the Admins. If created locally, users would receive an email through which they could set their own passwords, in addition to the regular 'welcome email'. Admins also have the option to set/reset a locally provisioned user's password in the ZTAA Console.

It is expected that the Admins convey this information to all users of the organization that would be making use of the ZTAA solution.

Step 2: Scan QR Code Using an Authenticator App

Once logged in, click the Profile button at the top-right corner of the page and select ‘My Profile’



The QR Code unique to your User Profile would be displayed.



 Scan the QR Code using LastPass Authenticator to sync the profile.



Step 3: Complete the Verification for Two-Factor Authentication (2FA)

Once the profile is synced in the LastPass Authenticator App, enter the code generated in the ZTAA Portal



Click on 'Verify' to complete the integration. The message ‘OTP Configured Successfully’ would be received.




You can now login to the ZTAA Portal as well as the ZTAA Client using the Time-based OTPs (TOTP) from LastPass Authenticator App.
Please note that once the Authenticator App is successfully configured, the system would no longer send out OTPs over SMS and Email by default. This could be requested for using the 'Try Another Way' option on the ZTAA Login Screen for 2FA.


In case you are unable to integrate your Authenticator App by following these steps, please contact your organization's IT Team.

If you are an Admin of the organization's ZTAA Account and need assistance, contact InstaSafe Support