![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(288, 15%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKC%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Authenticator
A Microsoft app for iOS and Android devices that enables authentication with two-factor verification, phone sign-in, and code generation
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(99.2, 83%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELD%3C/text%3E%3C/svg%3E)
Please understand that, as forum moderators and community members, we don’t have the tools or access required to make changes to user accounts. This includes signing in on your behalf, resetting MFA, changing passwords, or modifying access rights. For security reasons, only Microsoft Support can assist with requests like this.
Dear @KHR Consultants,
I hope you’re having a good day.
I’m really sorry you’re dealing with this, being locked out when you’re the only Global Administrator is an extremely stressful situation, and unfortunately it does happen more often than people expect.
Based on what you described, this is a tenant lockout scenario. Because you are the sole Global Admin and you no longer have access to any MFA method. In this situation, the supported recovery path is to contact Microsoft Support and request escalation to the Data Protection team. This team is specifically responsible for scenarios where the only admin is locked out. They will ask you to prove that you are the legitimate owner or authorized administrator of the tenant, typically using domain ownership, billing details, and organization information. After successful verification, they can reset or clear the MFA registration for your Global Admin account so you can sign in again and re‑enroll MFA.
To reach Microsoft Support, you can start by calling the appropriate customer service number for your region here: Customer service phone numbers - Microsoft Support
(Depending on your country or region, when you call the support number you may hear an automated introduction lasting around 30 seconds (for example, suggesting you visit a website). You can ignore this introduction and wait for the menu options. When prompted, select “1” for a business or work account, and then “1” again for technical support.)
In some regions, you may initially interact with an automated system. Based on experience, answering along these lines usually helps you reach the right team faster:
- What kind of problem are you experiencing?
- Answer: Authenticator
- What products do you use?
- Answer: Office 365 for business
- Is this for an education or company account?
- Answer: For companies
- Are you an administrator?
- Answer: Yes
- Are there any other administrators in your organization?
- Answer: No. I am the only admin in my tenant
- Do you need a... Service request?
- Answer: Yes. I need to create a ticket. Please send me direct to the Data Protection Teams.
During the call, you will be asked to provide information that verifies your identity and proves ownership of the tenant, such as your organization name, billing information, contact email, phone number, or other subscription‑related details.
If you’re unable to open a support ticket because you cannot access your admin center at all, there is an alternative approach. You can create a temporary Microsoft 365 trial tenant using this link: Microsoft 365 Business Plans and Pricing | Microsoft 365
Once the new tenant is created, you can access the admin center and submit a support ticket from there, requesting to speak with the Data Protection Team on behalf of your original tenant.
Important notes:
- This new trial tenant will not give you access to any of the data or settings in your original locked tenant. It is solely a temporary means to contact Microsoft support.
- The resolution time might be longer as you are contacting support from a different tenant.
- Remember to cancel the trial subscription for the new tenant once your issue with the original account is resolved to avoid any unintended charges.
I hope the information provided helps guide you in the right direction. Although I’m unable to take direct action, I sincerely hope that the steps and recommendations I’ve shared can support you through the process.
I hope this information helps clarify the correct path forward. Please feel free to share an update once you’re able to connect with Microsoft Support, and I’ll be happy to help interpret any next steps if needed.
Warm regards,
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
