If a user has lost their mobile device, they can use their recovery code to log in. If they do not have a recovery code, they will need their tenant administrator to reset their multi-factor authentication (MFA). This action is equivalent to removing or deleting the user's MFA registration. The MFA settings associated with the user will be removed, which allows them to set up MFA as if they were a new user on their next login attempt. To reset an admin's MFA as opposed to an end user's MFA, please contact Auth0 Support.
Click on the Actions button on the top right of the screen.
Select Reset Multi-factor from the dropdown. Admins will also see a Reset MFA link at the bottom of the Multi-Factor Authentication tab of the User Details page if the user is already enrolled in MFA. Both these methods function the same way. There will be a pop-up box to confirm your decision.
The next time the user logs in, they will need to set up their MFA just like a new user.
Use the Management API
As an admin, you can also use the Management API to delete a user's MFA enrollment using DELETE /api/v2/users/{id}/authentication-methods. If the user has more than one enrollment, you will need to repeat the process for each enrollment.
Recovery codes
With most MFA factors, the end user will be given a recovery code upon signup, which should be noted and kept secret. If they do not have their device or are otherwise temporarily unable to use their normal MFA process, the user can log in by entering this code after their username and password. If a recovery code is used, a new recovery code will be provided at that time.
If a user uninstalls then later re-installs Guardian, they may be prompted to enter their recovery code. If the recovery code has been lost, the user can perform a new installation of the app by disabling automatic restoration of their Guardian backup. To do so, the user will need to uninstall Guardian, temporarily disable automatic restoration of backups within their device settings (steps to do so will vary according to the device), then re-install the app. They will then need to add their MFA account(s) to the app as if performing a first-time setup. If automatic backups or automatic restoration are not enabled on the user's device, re-installation of the app will not prompt for a recovery code and the user will be required to add their MFA account(s) as in a first-time configuration.
If you have your device but lost access because of a hard reset or deleted the authenticator app, you might be able to restore access through a backup. If none of these options work, contact the app's customer service and the customer service for the platform you want to log into.
Sign in to your ID.me account, entering your email address and password.Instead of choosing an MFA method, select Recovery code.Enter your Recovery code, then select Continue. You'll see your recovery code that you can save or write down.
As long as you've updated Google Authenticator and it's connected to your Google account, you can restore Authenticator from the cloud. If you aren't backing up Authenticator, you can manually transfer your accounts to a new device or restore using your QR code.
How do I transfer my Google Authenticator app to a new device? To set up Google Authenticator on your new phone without your old phone, simply install the app and then scan the QR code from your Google Account. If you have another phone with the app set up, you can also scan a QR code from that device.
In the Accounts screen of Authenticator, tap the account you want to recover to open the full screen view of the account. Tap the tile for the account you're recovering and then tap the option to sign in to recover. Enter your password and then confirm your email address or phone number as additional verification.
Authenticator apps rely on the time set on your device to create the authentication code. If the time on your device does not match the time on your computer then the code will not work. Check the time and date on your phone and make sure they match the computer or device you are logging in from.
Introduction: My name is Frankie Dare, I am a funny, beautiful, proud, fair, pleasant, cheerful, enthusiastic person who loves writing and wants to share my knowledge and understanding with you.
We notice you're using an ad blocker
Without advertising income, we can't keep making this site awesome for you.