Directory multifactor login is linked to old phone, but mfa-login is the only available login to the directory.

Edvard Unsvåg 1 Reputation point
2022-11-03T11:18:42.473+00:00

My directory is configured to only allow multi-factor login. However, when I changed phone, I did not save the mfa-settings.

Question: What to do when you cant login to your account, or directory because you need MFA, but you do not have the phone where MFA is configured.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
20,110 questions
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Andy David - MVP 143.6K Reputation points MVP
    2022-11-03T11:23:45.503+00:00

    Contact your IT team or Azure Admin so they can clear the MFA settings on your account.
    If you are admin, use your break glass account to log on to the portal and clear the MFA settings for your account


  2. Andy David - MVP 143.6K Reputation points MVP
    2022-11-03T11:51:04.52+00:00

    That's why you want that breakglass account for emergency access :)

    https://learn.microsoft.com/en-us/azure/active-directory/roles/security-emergency-access

    256750-image.png