Master password requested multiple time even through passwordless mode is Enabled.
When using the chrome browser extension, Lastpass initailly performs the login with a Passwordleess process. The username is populated and a Passwordless button is shown. WIndows then requests screen lock password. Lastpass requests Yubikey touch. Then Lastpass shows the Vault. Good.
Within the Vault, the Lastpass extension reprompts when I select Launch for a website and again when I click the website login usename object, and a third time when I click on the site password object. The second and third times the reprompt window looks different from the first reprompt. After Lasspass fills my login information I sometimes have to complete a website two factor authtication; which isn't Lastpass's problem, but its one more step in the fustrating process.
So to access this website I had to type my master password three times, my windows screen lock password, touch my Yubie key and check my phone for the website two factor code. This is for one website. Often I have to access multiple websites concurently.
This process cannot be by design. What is wrong with the lastpass extension?
A bigger question, given the multiple oppurtiunities to capture a master password with every login, when a keylogger steals my master password, what access does lastpass provide with only the master password?
