Need help with my authenticator app not working

Apps
1

My authenticator app suddenly stopped working and I can’t access several important accounts that require two-factor authentication. I didn’t change phones or reset anything, but the codes are now being rejected. How can I fix this, recover access, or safely reset my 2FA without getting locked out for good?

2

Seen this a few times. Here is what I would try in order.

  1. Check time sync on your phone

    • Go to Date & Time settings.
    • Turn on automatic time and automatic time zone.
    • If it is already on, toggle it off and back on.
    • Open the authenticator and test a code again.
      Many TOTP apps fail if your phone clock is off by 30 seconds.

  2. Check the right account and issuer

    • If you have multiple entries for the same service, check which one you used last.
    • Some services invalidate old secrets when you re-setup 2FA, so older entries stop working.

  3. Try using backup codes

    • Most sites give backup codes when you enable 2FA.
    • Check password manager, email archives, screenshots, or printed papers for those.
    • Use one backup code to log in, then remove 2FA and set it up again with a new QR.

  4. See if the site changed 2FA method

    • Some services move from TOTP to SMS, push, or security keys.
    • Check their help page or status page using another device or browser.
    • Look for notes about 2FA migration or login issues.

  5. Use account recovery options

    • On the login page, look for “lost your authenticator” or similar.
    • Flows differ per site.
      Examples:
      • Google: “Try another way” then identity checks.
      • Microsoft: recovery email or phone.
      • Facebook: trusted contacts or ID upload.
    • Have ID, old emails, invoices, or other proof ready.

  6. If you still have the original QR or secret key

    • Re-add the account in your authenticator.
    • Use the same secret key.
    • Check if codes start working again.
    • If they do, remove duplicates to avoid confusion.

  7. Check for app problems

    • Update the authenticator app.
    • Restart your phone.
    • If possible, install the same authenticator on a second device, then scan the same QR / secret there.
    • If the second device works, your first app or phone time is the issue.

  8. Contact support for the most important accounts

    • Go straight to their official support channel, not random links.
    • Tell them you lost access to your 2FA codes and have no backup.
    • They often put the account in a manual review queue with ID checks and a wait period.

For the future, once you get back in:

  • Store backup codes in a password manager.
  • When you set up TOTP, save the QR or secret key somewhere safe.
  • Consider adding 2 authenticators with the same QR, for example your phone and a tablet, so one failure does not lock you out again.
3

Couple of extra angles to add on top of what @sonhadordobosque already covered:

  1. Verify it’s really TOTP and not some weird per-device token
    Some services look like standard authenticator codes but actually tie the secret to a specific device or their own app. If this suddenly broke across multiple services, it’s probably your phone/app/time. If it’s just one site, double check their docs to confirm they actually support generic TOTP and not only their “official” app or a magic-link style 2FA. If they quietly changed this, your codes will just keep failing no matter what you do with your authenticator.

  2. Check for account-specific limits or lockouts
    A lot of providers silently lock the 2FA challenge for a bit if they see many wrong codes in a row or suspicious IPs. Try:

    • Different network (mobile data vs Wi‑Fi)
    • Incognito browser, no VPN, no proxy
    • Wait 10–15 minutes, then try a fresh code only once

  3. Look for partial clock drift on desktop vs phone
    If you also use a desktop authenticator (browser extension, Authy desktop, etc.), compare the 6‑digit codes between phone and desktop. Small differences in time sync can make one work and the other fail. If they are not generating the same sequence for the same account at roughly the same moment, something is off with how one of them reads time. I’d actually not rely only on toggling automatic time like they said; go to a time site (like time.gov) and compare the seconds on your phone vs that site. If it is off by >20–25 seconds, fix it manually, then re-enable automatic.

  4. Check if the app changed hashing / digits (rare but seen it)
    Some authenticator apps let you edit token details:

    • Algorithm: SHA1 vs SHA256 vs SHA512
    • Digits: 6 vs 7 vs 8
    • Period: 30s vs 60s
      For normal TOTP, it should be: SHA1, 6 digits, 30 seconds. If those were ever edited (or imported badly from a backup), the codes will be rejected even if the QR was originally valid.

  5. For accounts with really high value (email, bank, cloud):
    Before doing “nuclear” recovery flows, I’d:

    • Export all current authenticator entries to a safe backup (if the app supports it)
    • Take screenshots of the current entries names & icons so you know what you had
      Then start recovery / reset with your main email first, since losing that with broken 2FA can cascade into losing everything else.

  6. If nothing works and you think the app is corrupted
    Instead of blindly reinstalling and risking wiping your tokens:

    • Check if the app has an internal export / encrypted backup function
    • If yes, export to local storage, then reinstall the app and reimport
    • Only if the app has no export and you still have access to critical sites via backup methods should you consider a wipe. Otherwise, keep the “broken” app as evidence for support, because some providers will ask “what app/version were you using, when did it stop working, which OS version” etc.

  7. For the future, I slightly disagree with relying heavily on printed backup codes alone
    Paper gets lost. Use a password manager and, if possible, store:

    • Backup codes
    • The raw TOTP secret (the ABCDEFG... string behind the QR)
    • Notes on when you last tested them
      And whenever you enable 2FA, log out and immediately test the whole login + 2FA flow once. If that one test fails, fix it before you forget what you changed.

If you say which specific services are failing (Google / Microsoft / some crypto exchange / a game account, etc.), people can usually point you to the right “I lost my 2FA” flow, because they’re all slightly different and some are a lot more forgiving than others.