![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(64, 25%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJB%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Entra | Microsoft Entra ID
A cloud-based identity and access management service for securing user authentication and resource access
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 85%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVS%3C/text%3E%3C/svg%3E)
Use another verification method or have an admin reset this user’s MFA registration.
- Check for alternative sign-in methods
- On the sign-in screen, when prompted to approve via Microsoft Authenticator, select “I can’t use my Microsoft Authenticator app right now” or “Use a different verification option” (if available).
- Choose SMS, phone call, or another method the user previously registered.
- After signing in, update the user’s Security info / Authentication methods and reconfigure Microsoft Authenticator.
- If no alternative method works (admin action required)
- As an administrator in Microsoft Entra ID, sign in to https://entra.microsoft.com.
- Go to Users → All users → [select the employee] → Authentication methods.
- Use Require re-register multifactor authentication (or equivalent option) to reset the user’s MFA.
- Have the employee sign in again; they will be prompted to set up Microsoft Authenticator from scratch using a QR code.
- If the locked-out user is the only admin
- If this employee is the sole administrator and no one else can reset their MFA, contact Microsoft’s Data Protection team via the regional Customer service phone numbers and request an admin MFA reset for the tenant.
- If reaching support is difficult, create a temporary trial Microsoft 365 tenant, go to the Microsoft 365 Admin Center → Help & support, and open a ticket asking to speak with the Data Protection team on behalf of the original tenant.
Until MFA is reset or an alternative method is used, the user will remain unable to sign in, so an admin-driven reset or Microsoft support involvement is required.
References:
- Common problems with two-step verification for a work or school account
- Troubleshoot problems with Microsoft Authenticator
- I cant log in to my business account because it is requiring Authenticator app which I do not have - Microsoft Q&A
- Microsoft authenticator sending me into a spiral - Microsoft Q&A
- I have a Micrsoft business account and I am the admin and the only user registered under this account. I can't log in because i have replaced my phone and the authenticator doesn't work. - Microsoft Q&A
- Microsoft Authenticator app doesn't show 6-digit OTP code - Microsoft Q&A
- Requesting a Tenant Admin MFA Reset - Microsoft Q&A
- Authenticator Did Not Complete Login