Account Security

Two-factor authentication codes are not working

Clock sync, backup codes, SMS delays, authenticator migration, recovery options, and safe retry limits.

Quick answer

Start with the least destructive check, confirm the device state, and only then change settings. For this problem, the fastest route is usually: Sync time on the phone with the authenticator app. Use backup codes if you saved them. Check whether the account expects SMS, app, or passkey.

Before you start

  • Sync time on the phone with the authenticator app.
  • Use backup codes if you saved them.
  • Check whether the account expects SMS, app, or passkey.
  • Stop repeated attempts before lockout.

Fix time-based app codes

Authenticator app codes depend on accurate device time. Enable automatic date and time, then reopen the authenticator app.

If you moved to a new phone, make sure the authenticator accounts were migrated, not just the app itself.

Choose the right method

Many accounts offer several second factors. A code from one app will not work if the login prompt expects SMS, email, passkey, or a hardware key.

Use the method named on the login screen rather than trying every code you have.

Recover without creating more risk

Use backup codes, trusted devices, or official recovery forms. Avoid third-party recovery services that ask for passwords or identity documents outside the platform.

If the account locks after failed attempts, wait for the stated cooldown before retrying.

Symptom checklist

What you seeMost likely causeFirst safe action
The device reacts, but the result is wrongWrong input, profile, mode, or account stateConfirm the visible setting before resetting anything
Nothing reacts at allPower, cable, port, battery, or button issueTest with a known good power source or cable
The problem comes back after rebootSaved setting, weak signal, low storage, or failing accessoryChange one variable and write down what changed

FAQ

Why does a fresh code fail immediately?
The phone clock may be wrong, or the account may be expecting a different two-factor method.
Are backup codes single-use?
Usually yes. Mark used codes and generate a new set after regaining access.

Keep troubleshooting