Step A — Prepare
Update Ledger Live and your device firmware. Use a trusted machine and verify no unknown remote access tools are active.
Your Ledger device protects the private keys that control your crypto. The login and access process is the doorway to those keys — treat it like the master key to a safety deposit box. Mistakes at login (phishing websites, compromised computers, or exposing your PIN and recovery phrase) can result in irreversible loss. Follow the steps below to reduce risk.
Always access Ledger services from official Ledger domains or the Ledger Live desktop app. Don’t click links from unsolicited emails or social media. Bookmark official pages and check TLS/HTTPS and the domain carefully before connecting your device.
Ledger Live is Ledger’s official management app. For browser-based dApps, connect through wallet connectors that explicitly support Ledger, and confirm all on-device prompts. Never enter your recovery phrase into a website or app — Ledger never asks for it.
Update Ledger Live and your device firmware. Use a trusted machine and verify no unknown remote access tools are active.
Plug your Ledger device into the computer with the official cable. Unlock it using your PIN on the device screen — not on the computer.
Open the official Ledger Live app. If you’re using a website, ensure the wallet connect request comes from the dApp and that the address shown on your device matches your expected address.
All critical actions require confirmation on the physical device. This prevents remote software from signing transactions without your consent.
Phishing pages that mimic Ledger or Ledger Live are common. Always double-check URLs and never approve unfamiliar transactions. If a site asks for your recovery phrase, close it immediately. Treat pop-ups and browser extensions with caution.
Your 24-word recovery phrase is the ultimate backup. Store it offline, in a secure physical location, and never in cloud storage. If you ever suspect compromise, move funds to a new wallet and generate a new recovery phrase on a fresh device.
Enable a strong PIN, use a passphrase (if you understand the tradeoffs), keep firmware current, and consider air-gapped setups for large holdings. For frequent trading, use a small hot wallet for daily use and keep the majority in your Ledger hardware wallet.
Example command: ledger-live --version (use the app menu to check updates)