If your MFA device is associated with an AWS root account:
You can reset your MFA device on the AWS Management Console by first signing in with your password and then verifying the email address and phone number associated with your root account.
If your MFA device is lost, damaged, stolen or not working, you can sign in using alternative factors of authentication, deactivate the MFA device, and activate a new MFA device. As a security best practice, we recommend that you change your root account’s password.
If you need a new MFA device, you can purchase a new MFA device from a third-party provider, Yubico or Thales, or provision a new virtual MFA device under your account by using the IAM console.
If you have tried the preceding approaches and are still having trouble signing in, contact AWS Support.
