How to recover logins for Authenticator app

Question

Hello,

I recently bought a new phone and forgot to transfer over all the accounts that were linked to my Authenticator app. I no longer have the old phone, and it appears that I did not have cloud back up enabled. I have no idea what my recovery codes are either. Is there a way to recover all this information and add to my new phone, as I seem to be locked out of some apps and websites now?

Thank you,

Monique

Answer 1

There is no way to recover the actual one-time password (OTP) secrets from the old Authenticator app if:

• The old phone is gone,
• Cloud/iCloud backup was not enabled, and
• Recovery codes for each service were not saved elsewhere.

Microsoft Authenticator does not store your emails, files, or other account data, and the OTP secrets themselves are not recoverable from Microsoft without a backup. In this situation, each protected account must be recovered or reset individually using that service’s own account recovery options.

Use this approach:

1. For Microsoft personal accounts
   • Go to the Microsoft account security pages from a browser and use other verification methods if available (SMS, email, recovery codes). If access to all security info is lost, follow the documented recovery process:
     • If some security info is still available, sign in to Advanced security options, add a new way to sign in or verify, then remove the old Authenticator method once verified.
     • If all security info is lost, start sign-in, choose I don't have any of these, and follow the steps to replace security info. Be aware this can trigger a 30‑day restriction before full access is restored.
2. For work or school accounts (Microsoft Entra / Azure AD / M365)
   • If the password is known but some security info is lost, sign in to the Advanced security options page for the work or school account, add a new verification method, then remove the old one.
   • If all security info is lost, start sign-in, select I don't have any of these, and follow the replacement process. This can also trigger a 30‑day wait.
   • If locked out of an admin account and no other admin can reset MFA, a Data Protection support case with Microsoft is required; this is done via a support ticket or phone as shown in the referenced Q&A threads.
3. For non-Microsoft services (banks, social media, etc.)
   • Use each site’s “Can’t access your account?” or “Lost your authenticator/phone?” flow.
   • Provide any recovery email, phone, or identity information they request.
   • Once access is restored, remove the old Authenticator factor and re‑add it on the new phone.
4. For any accounts where recovery fails
   • If a service has no alternative recovery method configured and no support path that can verify identity, access to that account may be permanently lost. Only that service’s support can confirm and assist.

To prevent this in the future once access is restored:

• Enable backup in Microsoft Authenticator:
  • On iOS: sign in with a personal Microsoft account, enable iCloud backup in Authenticator.
  • On Android: open Authenticator → Settings → turn on Cloud Backup and choose a personal Microsoft account.
• Store each service’s recovery codes in a secure location.
• Keep at least two different MFA methods per important account (e.g., Authenticator + SMS or email).

---

References:

• Back up account credentials in Microsoft Authenticator
• Back up your accounts in Microsoft Authenticator
• Restore account credentials from Microsoft Authenticator
• Common problems with two-step verification for a work or school account
• How to go passwordless with your Microsoft account
• How Do I Regain Access to My Account After Losing Access to Microsoft Authenticator? (Urgent Request). - Microsoft Q&A
• Requesting a Tenant Admin MFA Reset - Microsoft Q&A
• Cannot authenticate with E-mail when logging into Microsoft Authenticator(iOS). - Microsoft Q&A