Quick overview

Ledger Live is Ledger’s official companion application used to initialize and access your Ledger hardware wallet, manage accounts and assets, perform firmware updates, and sign transactions securely on the device. This guide covers the login flows, connection steps, what to verify on-device, how to protect your recovery phrase, and common troubleshooting steps. Read this before installing or logging in.

1. Download & verify Ledger Live

Always download Ledger Live from the official Ledger website. Look for the correct HTTPS certificate in your browser and, where available, verify checksums or signatures. Use the desktop application (Windows/macOS/Linux) for best functionality; mobile apps are available for iOS and Android for everyday use. If you are in an enterprise environment, obtain the installer via your approved internal distribution channel and verify integrity against the vendor checksum.

Why verify? Verifying the installer reduces the risk of running a tampered or counterfeit build that could attempt to trick you into revealing secrets.

2. Install and initial launch

Run the installer and follow platform prompts. On macOS you might need to allow the app in Security & Privacy; on Linux ensure any udev rules needed for USB access are configured for non-root users. Launch Ledger Live after installation. On first run you’ll be presented with options such as “Initialize as new device,” “Restore device,” or “Open existing Ledger Live.” Choose the option appropriate to your situation.

If you are restoring from an existing recovery phrase, only use the device screen to input the phrase during the restore flow — never enter the seed into a computer or web form.

3. Connect your Ledger device

Use the cable included with the device and connect directly to the computer (avoid unknown hubs during setup). Ledger Live will detect the device and guide you through unlocking it with the device PIN. Always input the PIN on the device’s buttons or screen rather than on your computer. Never provide your recovery phrase to Ledger Live or any other software — the device’s hardware interface is the only supported place to enter the seed during a restore.

Tip: If Ledger Live asks for your recovery phrase at any point outside the device restore flow — stop. That is a scam. Contact official support or reinstall Ledger Live from the official site.

4. Login flows & profiles

Ledger Live supports a local profile and optional app password that protects the local application settings. This password is solely for app-level protection and is not a replacement for your device’s PIN or your recovery phrase. If you enable the local app password, store it in a secure password manager. The primary security control remains the device PIN and the recovery seed.

For typical use: connect the device, unlock with the PIN, then open or create a Ledger Live profile and add accounts. Ledger Live never asks you to type the recovery seed during regular login — only during an official restore on the device.

5. On-device verification: the single source of truth

The device display is authoritative. When you generate a receive address, always verify that the address shown in Ledger Live matches the one on your Ledger device screen before sharing it. When sending funds, Ledger Live will build the transaction and send it to the device to sign; carefully verify recipient, amount, and fees on the physical device screen before approving. Host-side malware can attempt to alter displayed addresses and amounts, but it cannot change what the hardware displays.

Always cancel if what you see on the device differs from the application. Investigate and resolve the discrepancy before proceeding.

6. PINs and passphrases (advanced)

Your device PIN prevents casual access if the hardware is lost or stolen. Choose a PIN that is memorable but not guessable by others. Repeated wrong attempts will wipe the device (this is an optional security setting per model/configuration) — so ensure your recovery is safely stored before intentionally trying risky retrials.

The passphrase feature is optional and creates hidden wallets derived from your seed and an additional secret phrase. Passphrases provide extra privacy and security but also increase recovery complexity. Only enable passphrases if you have a reliable secret management plan — losing the passphrase means losing access to the hidden wallet permanently.

7. Recovery phrase: backup & storage

The recovery phrase (12/24 words depending on the device/configuration) is the only reliable backup to restore your wallet. Write the words on the supplied recovery card (or a durable metal backup) in order, double-check spelling and order, and store the copy offline in a secure location. Consider geographically separated backups for high-value holdings: keep copies in two safe climates and locations.

Never store the seed digitally (photos, cloud, email, notes). Digital copies are often backed up automatically and can be leaked.

8. Test transactions

Before transacting significant amounts, perform a small test transfer both when receiving and sending to new addresses or services. This validates address derivations, fees, and the entire workflow. Many losses occur because users skip small tests and trust a single unattended transaction.

9. Troubleshooting common login issues

Device not detected: try another USB cable/port, avoid hubs, restart Ledger Live, and restart the computer. On Linux check udev rules for device access.

Forgot PIN: if you forget the PIN you must reset the device and restore from your recovery seed. Do not reset a device unless you have a secure copy of the recovery seeds.

Suspicious prompts: treat any unprompted requests for seed words as a scam. Disconnect and seek official guidance.

10. Daily best practices

  • Always confirm addresses and amounts on the physical device before signing.
  • Keep Ledger Live and your OS up to date; install firmware updates only via Ledger Live and confirm updates on the device.
  • Use small test transactions for unfamiliar services, exchanges or smart contracts.
  • Consider a dedicated machine for very large transfers or institutional use.
  • Store your recovery seed offline and verify backups periodically.

11. Advanced topics (multisig & air-gapped workflows)

For higher security or institutional custody, consider multisignature wallets which require multiple devices to sign transactions, reducing single-point failures. Air-gapped signing (where a device never connects directly to the internet and transfers data via QR/USB between offline and online machines) is another advanced pattern. These setups require careful operational procedures and testing.

12. Accessibility & user tips

Ledger Live supports keyboard navigation and standard accessibility features; enable browser or OS-level accessibility settings as needed. For users who prefer high-contrast or large text, configure your OS for higher readability and confirm on-device prompts visually and tactically where relevant.

13. Final checklist before important transactions

  1. Installer verified and Ledger Live up to date.
  2. Device connected and unlocked with PIN on device.
  3. Recovery phrase safely recorded and stored offline.
  4. Addresses and transaction details verified on the device screen.
  5. Performed a small test transaction if interacting with a new address or service.