MFA device reset for root user

Question

I have another AWS account with no AIM accounts, only root account.

MFA was activated without my consent and now I can´t log in because the MFA code is sent to a non existing phone number. If I select an alternative MFA way, I get an e-mail to verify my e-mail (what I can do) as the first step and the second is to receive a call to that unexisting phone number. So, the alternative MFA way is not alternative, so it always gets to the same dead end: using a phone number that does not exist anymore.

Support pages that address updating MFA account for the root account depend on using a AIM account, which I don´t have, so that method is workless.

What I need is to receive an e-mail containing the MFA code itself, so I can fill it in and get going, but AWS is not helping me on that.

What to do?

Riku_Kobayashi · Answer

Hello.

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_mfa_lost-or-broken.html?icmpid=docs_iam_console#root-mfa-lost-or-broken  
> You might see alternative text, such as Sign in using MFA, Troubleshoot your authentication device, or Troubleshoot MFA, but the functionality is the same. If you can't use alternative authentication factors to verify your account email address and primary contact phone number, contact AWS Support to deactivate your MFA device.

I recommend that you contact AWS via the following URL:  
https://support.aws.amazon.com/#/contacts/one-support?formId=mfa

MFA device reset for root user

Relevant content