Locked Out of Microsoft Account Due to Authenticator Verification Loop (No Access to MFA Methods)

Question

I am locked out of my Microsoft account because of a Microsoft Authenticator verification loop.

The Microsoft Authenticator app is signed out, but when I try to sign back into the app or my Microsoft account, Microsoft asks me to approve the sign-in using the Authenticator app. The issue is that I cannot access the app because I am currently locked out of it.

I do not currently have another working verification method available or at least it is not giving me any other options.

Has anyone dealt with this before, and what are my options for recovering access to both my Microsoft account and the Authenticator app itself? I would especially appreciate advice about bypassing the authenticator loop, restoring from backup, using alternative verification methods, or getting in contact with a real Microsoft support person.

Answer 1

The verification loop occurs when Microsoft Authenticator is the only registered multifactor method and there is no accessible backup method. Recovery options depend on whether this is a personal Microsoft account or a work/school (Microsoft Entra) account, and whether any other admin exists.

For a personal Microsoft account (Outlook/Hotmail/Live/MSN):

1. If at least one security method still works:
   • Go to the Security basics page and sign in: Sign in.
   • Select Update info.
   • Choose a method that still works, or select I don't have any of these to replace security info.
   • Add a new way to sign in or verify (another email, phone, or Authenticator) and confirm it with the code that is sent.
2. If some security info is lost but not all:
   • Sign in to the Advanced security options page: Sign in.
   • Select Add a new way to sign in or verify, choose how to receive codes, and confirm the new method.
   • Expand the old method that is no longer accessible and select Remove.
   • Do not remove all methods at once, or the account may be restricted for 30 days.
3. If all security info is lost but the password is known:
   • Start sign-in to the Microsoft account: Sign in.
   • At Verify your identity, select I don't have any of these.
   • Follow the prompts to replace security info.
   • After replacement, sign-in is blocked for 30 days while the change completes. Existing security info can still be used during this period; using it cancels the update.
4. If the password is not known and no security info is available:
   • Read the guidance at Help with the Microsoft account recovery form.
   • Submit the recovery form: Account recovery form.
   • If two-step verification was turned on and none of the alternate methods are accessible, support cannot override this; password reset links cannot be sent and account details cannot be changed.

For a work or school account (Microsoft Entra / Microsoft 365):

1. If there is another global admin:
   • Another global admin signs in to the Azure portal.
   • Go to Microsoft Entra ID → Users → [your user] → Authentication methods.
   • Select Require re-register multifactor authentication.
   • On next sign-in, the account is prompted to register MFA again and can add a fresh Authenticator registration and additional methods.
2. If there is no other global admin and this is the only admin account:
   • This is a tenant lockout scenario. The Microsoft Data Protection team must be engaged via a support ticket.
   • Call the Microsoft customer service phone numbers and follow the prompts to reach support for Office 365 for business / company account, confirm that this is an admin account and there are no other admins, and request a service request for tenant recovery / MFA reset.
   • The Data Protection team verifies identity and ownership and then resets MFA registration or restores access. This may take several days and involves back-and-forth verification.
   • If the subscription is via a partner/reseller and the admin cannot open a ticket, contact the partner’s support to open a Microsoft support request on behalf of the tenant.
   • As an alternative path, a new trial tenant can be created, then from that tenant’s admin center a support ticket can be opened describing the lockout on the original tenant, including admin email, tenant domain, error messages, and confirmation of admin role.

Other relevant behaviors and troubleshooting:

• If repeated sign-in attempts have been made, Microsoft Entra multifactor authentication may temporarily block additional attempts due to unusual activity. Waiting before trying again or using a different MFA method (if available) can help.
• If the Authenticator app shows “Authentication did not complete,” check that the app is unlocked, notifications are enabled, the app is updated, the device has network connectivity, and device date/time are correct. If the issue is actually lack of access to the app (device lost/replaced), these steps will not resolve the loop and recovery must follow the paths above.
• If verification codes are not arriving, sign in to the Security basics page, select Update info, and either choose a working method or I don't have any of these. If an alternate email is another Microsoft account, use private browsing windows so both accounts can be signed in at once and the code can be retrieved.
• If a “Try another verification method” or similar block appears, it may be due to unusual activity, high volume of requests, or risk-based blocking. Switching verification method, changing networks, and waiting (up to several days) can clear temporary blocks. The sign-in helper tool can also be used to diagnose sign-in issues: Start.

In summary, bypassing the Authenticator loop requires either:

• Using any remaining security method to add new methods and remove the old Authenticator; or
• Using I don't have any of these to replace security info (personal accounts), accepting the 30-day restriction; or
• Having another admin reset MFA (work/school); or
• Engaging Microsoft support/Data Protection via phone/support ticket when there is a tenant-wide admin lockout.

---

References:

• Troubleshoot Microsoft verification code issues
• Help with the Microsoft account recovery form
• Common problems with two-step verification for a work or school account
• Troubleshoot problems with Microsoft Authenticator
• "Account verification system is having trouble" error message when you try to sign in by using a work or school account
• How Do I Regain Access to My Account After Losing Access to Microsoft Authenticator? (Urgent Request). - Microsoft Q&A
• Cannot authenticate with E-mail when logging into Microsoft Authenticator(iOS). - Microsoft Q&A
• Global Admin Locked out - Microsoft Q&A
• I have a Micrsoft business account and I am the admin and the only user registered under this account. I can't log in because i have replaced my phone and the authenticator doesn't work. - Microsoft Q&A
• Severity A Situation - Locked out of global admin account (MFA) - business down - Microsoft Q&A