Getting a New Phone Over the Holidays?
Don’t Forget This Crucial Step.
Black Friday. Cyber Monday. Christmas. Boxing Day.
Why It Matters
MFA is what keeps your accounts and company data secure. It’s the little approval app or text code that pops up when you log in to Microsoft 365, banking services, VPN, remote desktop, password managers, and more.
If you activate a new phone without transferring your MFA, you might be completely locked out of your accounts when you return from the holidays.
1. Without MFA, you’re locked out — even if you know your password
Most business tools are now secured with conditional access policies requiring MFA. That means:
Password alone won’t get you in.
IT must reset and re-enroll your MFA.
That process often requires company authorization, proof of identity, and admin-level access — not something you want to wait on when deadlines are calling.
2. You lose access to critical business systems
When your MFA is stuck on an old device you no longer have access to, you can’t use:
📧 Email (Microsoft/Google)
💻 Remote desktop or VPN
🔑 Password managers (like LastPass, Keeper, Bitwarden)
💬 Microsoft Teams, share drives & collaboration tools
💳 Banking or financial accounts
🔐 Any system with conditional MFA rules — sometimes including firewall/app access
3. It leads to productivity delays & support backlog
Switching MFA after you’ve already upgraded phone:
Requires IT intervention
Takes time, depending on level of re-verification
4. It increases risk if devices are replaced, wiped, or traded in
If your old phone is:
Factory reset
Traded in
Lost, damaged, or recycled
…you lose all authenticator codes permanently, unless previously backed up.
🔐 MFA apps are intentionally built so they cannot be easily copied for security reasons.
5. It’s required for cybersecurity compliance
Many businesses must meet cybersecurity standards like:
CyberSecure Canada
SOC2
ISO 27001
Insurance & cyber liability requirements
These mandate multi-factor authentication. If employees bypass it or attempt insecure MFA resets, it may trigger compliance violations.
📝 Insurance providers can deny claims if MFA was improperly disabled.
6. Suspicious login attempts can trigger account lockouts
If the login fails repeatedly due to missing MFA, automated systems may:
Flag login attempts as potential breaches
Lock the user account
Force password reset
Trigger incident reporting
What You Should Do Before Switching Phones
Here’s how to avoid starting the new year with a helpdesk ticket:
Before wiping or trading in your old phone, make sure you’re still able to access your MFA apps (Microsoft Authenticator, Google Authenticator, Duo, etc.).
Move or back up your MFA accounts:
For Microsoft Authenticator: Use the cloud backup and transfer feature.
For others: Manually export or scan provided QR codes.
Test it! Try logging in to one of your main work accounts using the MFA on your new phone.
Update your contact info (especially if you rely on SMS or phone call authentication).
Let IT know if you’re unsure – before switching devices.
What If You Already Switched?
No worries – it happens! Just reach out to our team. We can reset your MFA and walk you through the setup process.
📌 Heads up: Because so many people upgrade phones over the holidays, wait times can be longer in January. Reach out ahead of time if possible to avoid delays.
If you're planning to replace your phone or already have, let us know. We can:
Guide you through transferring your MFA
Confirm your accounts still work
Help secure your device
📨 Send us a quick email or submit a ticket before your upgrade — it could save you from being locked out later.
New year, new phone… same access to your accounts.
Make MFA transfer part of your phone setup checklist and start 2026 (or any new work year) stress-free.
