Disabling 2FA without phone
-
Hello,
I’m stuck with catch-22 situation.
1. I enabled 2FA with my phone.
2. I lost my phone.
3. I logged in successfully with my backup codes.
4. I want to update 2FA setting with my new phone.According to this, I need to disable the current 2FA first, to enable 2FA with my new phone. But I cannot disable with only backup codes.
1. I think disabling 2FA with backup codes should be supported.
2. The doc that I linked should be updated.What do you think?
The blog I need help with is: (visible only to logged in users)
-
Hi soundlake,
What is the username of the account you wish to disable two step authentication for?
I need to disable the current 2FA first, to enable 2FA with my new phone. But I cannot disable with only backup codes.
Without access to the phone number, you should be able to login and disable two step authentication with backup codes. Do you still have access to those?
Once I know which account you need help with, I’ll be happy to look at the next steps.
-
Thank you for helping me out.
What is the username of the account you wish to disable two step authentication for?
You can check my account, soundlake.
Do you still have access to those?
I can access 2FA setting page.
The problem is, it requires me to input the verification code when I attempt to disable the 2FA. There is option to send the verification code via SMS, but as I mentioned before, I don’t have access to my phone. All I have is the backup code, and there’s no option to disable 2FA with this backup code.
I think it is a bug, which should be fixed although it’s a peculiar corner case.
-
Hi there,
You can type in the backup code in the box that asks for the SMS code, and it should be accepted, provided the backup code is still valid. Backup codes can be used even if the form specifically says “SMS Code” or “Authenticator App Code”. There’s not a separate option you first need to select before you can use a backup code.
-
- The topic ‘Disabling 2FA without phone’ is closed to new replies.
WordPress.com Forums 