![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 54%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERB%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation
To have multifactor authentication codes go to the iPhone instead of the Android device, the verification method must be updated so the new phone is registered as the active factor.
Use one of these approaches, depending on how the account is set up:
- If SMS or phone call is used for MFA
- As long as the same phone number is active and can receive SMS/calls on the iPhone, the existing SMS/call-based MFA continues to work on the new device.
- Sign in and choose the SMS/call option; the code or call will arrive on the iPhone because it is tied to the phone number, not the specific device.
- If SMS/call is not working, verify the number in the account’s security info and update it if needed.
- If Microsoft Authenticator (or another authenticator app) is used
- Do not remove or reset the old phone until the new iPhone is fully configured, if it is still available.
- Sign in to the security info page for the account (for work accounts, this is typically the security info/MFA registration page) using any available verification method (SMS, call, or existing app if still accessible).
- Add the iPhone as a new method:
- Install Microsoft Authenticator (or the chosen authenticator app) on the iPhone.
- From the security info page, add a new “Authenticator app” or “App-based” method.
- Scan the QR code with the app on the iPhone.
- Approve the test notification or enter the one-time code from the iPhone.
- After confirming that sign-in works using the iPhone, remove the Android device/app registration from the security info page so codes are no longer tied to the old device.
- If moving from Android to iPhone with app-based MFA only
- If the Android phone is no longer available and there is no SMS/call or other backup method configured, an administrator or support must reset MFA:
- For work accounts, an admin can reset MFA in Microsoft Entra Admin Center by requiring re-registration of multifactor authentication.
- If there is only one admin and that admin is locked out, contact Microsoft support and request the Data Protection team to reset MFA so the iPhone can be registered as the new device.
Once the iPhone is registered as the primary MFA method (either via SMS/call to its number or via Microsoft Authenticator on the iPhone), future sign-ins will send or generate codes on the iPhone instead of the Android device.
References:
- Migrate to a new iPhone for work
- Frequently asked questions about Microsoft Entra multifactor authentication
- Set up a mobile device as a two-step verification method
- The keys to the kingdom - securing your devices and accounts
- Why is Microsoft texting me?
- Microsoft authenticator sending me into a spiral - Microsoft Q&A
- I have a Micrsoft business account and I am the admin and the only user registered under this account. I can't log in because i have replaced my phone and the authenticator doesn't work. - Microsoft Q&A