If you cannot sign in because your Microsoft two-factor code is unavailable, the recovery path depends on whether you still control any trusted verification method.
This guide explains the exact Microsoft account recovery options, what to try first, and how to strengthen your account so the problem is less likely to happen again.
Understand why the two-factor code is unavailable
Microsoft account sign-in often uses multifactor authentication through the Microsoft Authenticator app, SMS text messages, email codes, or a security key.
When any one of those methods fails, you may be locked out even if you know your password.
Common causes include a lost phone, a new device with no authenticator backup, a changed phone number, disabled notifications, a dead battery, network issues, or an account that requires an additional verification step after suspicious activity.
In some cases, Microsoft may also block access temporarily after repeated failed attempts.
Start with the fastest fixes
Before beginning full account recovery, try the most direct checks.
These often restore access in minutes.
- Confirm your device has internet access and can receive SMS or push notifications.
- Open the Microsoft Authenticator app and check whether the approval request is waiting there.
- Make sure your phone number has mobile signal and can receive short codes.
- Check your spam or junk folder if the code was sent by email.
- Restart the device and try the sign-in again.
- Verify that the date and time on your device are set automatically.
If the code still does not arrive, move to the recovery methods built into Microsoft’s sign-in flow.
Use a different verification method
Microsoft account security settings can include multiple sign-in methods.
If one method is unavailable, look for an alternate option on the verification screen.
- Choose Use a different verification option if it appears.
- Request a code by text message instead of push approval.
- Use a backup email address if it is still linked to the account.
- Use a recovery code, if you previously saved one.
- Approve the sign-in from a trusted device already signed in to the same Microsoft account.
If you still have access on another device, sign in there first and update your security information before attempting recovery on the locked device.
How to recover your Microsoft account account when two factor code is unavailable?
If no verification method works, use Microsoft’s account recovery form.
This is the main path for regaining access when you cannot receive a code.
The form asks for information that helps prove ownership of the account.
Go to the Microsoft account recovery page and enter the email address or phone number associated with the account.
Then provide as much accurate information as possible, including:
- Previous passwords you remember
- Subject lines from recent emails sent from the account
- Names of folders or contacts you created
- Billing details for subscriptions or purchases
- Xbox or Skype account details, if applicable
- Recently used devices and approximate sign-in locations
Accuracy matters more than volume.
Microsoft uses the information to compare your submission with account history, so partial but correct details can be better than guessed answers.
What if you use a work or school account?
Work and school accounts are managed differently from personal Microsoft accounts.
If the account belongs to Microsoft 365, Azure, or an organization using Entra ID, contact your IT administrator or help desk.
They can reset multifactor authentication, issue temporary access, or update security methods through administrative tools.
What to do if your phone number changed
A changed or deactivated phone number is one of the most common reasons a code becomes unavailable.
If the old number is no longer yours, recovery depends on whether you still have another trusted method.
- Try signing in from a device that is already trusted.
- Use your backup email, if configured.
- Submit the Microsoft recovery form.
- If the account is business-managed, ask an administrator to update your authentication methods.
After regaining access, immediately replace the old number with a current one and add at least one alternate method.
What if Microsoft Authenticator was on a lost phone?
If your authenticator app was on a lost, replaced, or factory-reset phone, the code may be unavailable because the app no longer has your account data.
Microsoft Authenticator supports cloud backup for some accounts, but only if you enabled it before losing the device.
Try these steps:
- Install Microsoft Authenticator on the new device.
- Sign in with the same Microsoft account used for backup, if available.
- Restore from cloud backup if the app offers that option.
- Use another verification method while the app is being restored.
If no backup exists, you may need to re-register the authenticator after recovering the account through Microsoft support or the recovery form.
Improve your chances during the recovery form
Microsoft account recovery is more successful when the details match what the company already has on file.
Use the following guidelines when filling out the form:
- Submit the form from a familiar device and location when possible.
- Enter passwords you used recently, not just the oldest one you remember.
- Use the same formatting for names, addresses, and billing details that you used originally.
- Do not leave out optional fields if you can answer them accurately.
- Wait for Microsoft’s result before submitting multiple duplicate requests.
If the first attempt fails, review the information and try again later with more accurate details.
Repeated incorrect submissions do not help.
After you regain access, secure the account immediately
Once you are back in, take a few minutes to reduce the risk of another lockout.
Microsoft recommends keeping more than one recovery method on file.
- Add at least two verification methods, such as an authenticator app and a backup email.
- Save recovery codes in a secure password manager or offline location.
- Update any old phone numbers or recovery emails.
- Review recent sign-in activity for unfamiliar logins.
- Change your password if you suspect compromise.
- Turn on passwordless sign-in if it fits your security setup.
These steps are especially important if you rely on your Microsoft account for Outlook, OneDrive, Windows devices, Xbox, Microsoft 365, or family safety services.
How to prevent another two-factor lockout
Two-factor authentication is stronger when it is redundant.
In practice, that means having multiple ways to verify ownership if one device or number fails.
Best practices for Microsoft account security
- Keep your authenticator app backed up and updated.
- Store a recovery code in a secure place.
- Use a primary and secondary email address.
- Review security settings after changing phones or carriers.
- Keep your recovery information current every few months.
- Test your backup sign-in methods before you need them.
For users managing sensitive files or business subscriptions, it is also wise to document which device, number, or email controls each recovery method.
That can save time when access is urgent.
When to contact Microsoft support
If the recovery form fails and you cannot access any alternate verification method, Microsoft support may be your next step.
Support cannot bypass security policy, but it can explain the options available for your account type and point you to the correct recovery process.
Have the following information ready before you contact support:
- The exact email address or phone number on the account
- A description of the verification method that is unavailable
- Proof of purchases or subscription details, if relevant
- Any error messages shown during sign-in
- Whether the account is personal, work, or school
Clear details make it easier to route your case to the right recovery path.