Skip to content

Locked out with no 2FA access Troubleshooting

What to do when you can't complete two-factor verification and have no backup codes left to sign in.

Last updated July 16, 2026

On this page

If two-factor authentication is protecting your account and you can no longer reach any of your methods — and you've run out of backup codes — you're in the one situation where you can't sign yourself back in. This article walks through what to try first and how to recover access safely.

First, rule out the quick fixes

Before treating this as a full lockout, confirm that none of your second factors are actually reachable. Many "locked out" cases turn out to be a single method that's temporarily failing.

  1. Try every method you enabled. On the sign-in verification screen, look for the option to choose a different method. If you turned on more than one — authenticator app, text message, or email — you only need one of them to work.
  2. Check your authenticator app's time sync. A rejected authenticator code is most often caused by your phone's clock drifting. Enable automatic date and time on the device, then generate a fresh code.
  3. Wait for a code to arrive. Texted and emailed codes can take a moment. Check your spam or junk folder for the email, and confirm your phone has signal. If nothing arrives, use the resend option after the short cooldown.
  4. Look again for backup codes. When you first turned on two-factor, you were shown a set of one-time backup codes to copy or download as a text file. Check your password manager, downloads folder, or wherever you save secure notes. Any unused code will get you in.
Tip: Each backup code works only once. If you've used some already, look further down the list for one you haven't entered yet.

If none of your methods work

If you've confirmed that every second factor is genuinely unavailable and you have no unused backup codes, you cannot restore access on your own. This is intentional: it's the same barrier that stops anyone else from getting into your account.

At that point, contact Praxivara support to begin account recovery. Reach out from an email address associated with the account if you can, and be ready to verify your identity. For your protection, recovery is deliberately careful, so allow some time for the process.

What to include in your request

  • The email address you use to sign in to Praxivara.
  • A short description of what happened — for example, a lost or replaced phone, a wiped authenticator app, or no access to the phone number or inbox tied to your codes.
  • Any details that help confirm you're the account owner.

Do not share your password, full backup codes, or any verification code in your message. Support will never need those to help you recover.

Once you're back in

After you regain access, take a few minutes to make sure this doesn't happen again.

  1. Open Settings > Security and review your two-factor methods.
  2. Turn on a second method if you only had one. Having both an authenticator app and either text-message or email codes gives you a fallback if you lose a device.
  3. Generate a fresh set of backup codes and store them somewhere you'll still have access to even without your phone — a password manager is ideal. Generating new codes immediately retires the old set.
  4. If you replaced your phone, re-enroll your authenticator app on the new device and verify it before you rely on it.
Note: The phone number used for text-message codes can't be swapped in place. To move to a new number, turn off the text-message method first, then set it up again with the new number.

Prevent future lockouts

Two-factor authentication is only as reliable as your recovery options. A little setup now saves a stressful recovery later.

  • Keep at least two methods active so a single lost device never locks you out.
  • Save your backup codes outside your phone — in a password manager or another secure place you can reach from any device.
  • Regenerate backup codes whenever you're running low, and store the new set right away.
  • Update your methods before a change, such as retiring the authenticator on an old phone or switching phone numbers, rather than after.

Admin and company accounts are required to keep at least one second factor in place, so recovery for those accounts always goes through support if every method is lost.

Was this page helpful?