Hero Banner

Multi-Factor Authentication (MFA)

Learn and ask questions on how to implement MFA

Reply
Level 2 Contributor

Iphone with Authenticator APP died

The Iphone running the Authenticator APP died on Friday. It was not configured for Icloud backup so the account for our CSP sandbox partner account cannot be recovered. Is there a way to reset the account so we can configure MFA for tha account again?

3 REPLIES 3
Highlighted
Microsoft

Re: Iphone with Authenticator APP died

Yes, an admin can reset the registration status in Azure AD portal: 

https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userdevicesettings

Level 2 Contributor

Re: Iphone with Authenticator APP died

Thanks for this. Unfortunately the admin has MFA turned on and cannot complete the auth process because the device is dead. 


@JanoschUlmer wrote:

Yes, an admin can reset the registration status in Azure AD portal: 

https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-userdevicesettings


 

Microsoft

Re: Iphone with Authenticator APP died

OK, and I guess this was the only admin in the tenant? Then it will be required to open a support request.

 

Phone support would be one option, the other one is mentioned here:

https://azure.microsoft.com/en-us/support/faq/

How do I submit a support request if I cannot log in to the portal?

If you are unable to log in to the Azure Portal, visit https://aka.ms/AzurePortalHelp for assistance.

 

Even though this recommendation might come a bit late, you can register multiple devices for MFA, so beneath the best practice to always have 2nd admin account available, you can/should have some "break-glass" token devices. Even using other token software, like e.g. authy.com, works and can be registered additionally - here you would have the option to use a WindowsPC/Mac as backup device for providing the 2nd factor.