Microsoft account won't let you sign in — the simple fixes (and the painful ones)
Forgot your password, lost your phone, locked out for 'unusual activity' — Microsoft account recovery is a maze. Here's the path through it, in plain English, with the dead-ends marked.
Mona Steele
Microsoft 365 enthusiast
Affiliate disclosure: Some links in this article may earn us a commission at no extra cost to you. Learn more.
My uncle, 71 years old, called me last spring. He'd been locked out of his Hotmail since 2003 (yes, that's three letters: Hotmail, the personal one). Twenty-two years of family photos, tax records, the email he sent my grandmother the week before she died. All sitting in an account he couldn't access because the recovery phone was a Nokia he threw out a decade ago.
We got him back in. Took two weeks and three rounds of Microsoft's identity verification form. Most of that time was him trying to remember the first password he ever set, in 2003. (He couldn't. We used other proof.)
So. Personal Microsoft account sign-in problems. Different beast from work accounts. Here's the real walkthrough.
First — make sure you actually have a Microsoft account
Sounds dumb but I get this question constantly. There are three things people call "my Microsoft account" and they're all different:
- Personal Microsoft account — anything ending in @outlook.com, @hotmail.com, @live.com, or any non-corporate email you registered with Microsoft for Xbox, OneDrive personal, Skype, or downloading Windows. This article is about this one.
- Work or school account — your @yourcompany.com email that signs you into work Office 365. Different sign-in path. Different recovery. See Office 365 won't let you sign in.
- Local Windows account — only used to log into your laptop, not connected to anything online. If you can sign into your laptop but can't get into account.microsoft.com, this is probably what you have. There's no recovery for these — you'd have to convert to a Microsoft account or reset Windows.
The personal account stuff lives at https://account.microsoft.com. If that's where you're trying to sign in, keep reading.
Fix 1 — You think you forgot the password
You probably didn't. Most "I forgot" cases are actually:
- Caps Lock on (about half the time, honestly)
- Wrong account — try the other Microsoft email you have
- A second factor was added by someone in your family without telling you
Try the password three times slowly. Look at what you're typing. Sounds patronizing. Saves people from password-reset hell more often than I can explain.
If it's truly forgotten:
- Go to https://account.live.com/password/reset
- Enter your email
- Pick a verification method — they'll list whichever you set up (text, alternate email, Authenticator app)
- Type the code you receive
- Set a new password (not the old one with a number after it — Microsoft's checking)
Done. Takes about 90 seconds when the recovery info is up to date.
Fix 2 — None of the recovery options work
This is where it gets painful. Phone number is from your old job. Recovery email belongs to an account you no longer use. Authenticator app was on the phone you lost.
Microsoft's only path here is the identity verification form at https://account.live.com/acsr.
Buckle in. The form asks:
- Your name and date of birth as they appear on the account
- Country and ZIP code at signup
- A current contact email Microsoft can write back to (NOT the locked one)
- Old passwords (any you remember, even from years ago — they accept partial matches)
- Recent emails you sent or received (subject lines + roughly when, plus recipient names)
- For Xbox accounts: gamer tag, recent games played, console serial number
- For OneDrive: folder names you've created, recent file names
- For Skype: contacts you've messaged, who paid for credit if you had any
The more you can give them, the better. Write everything you can think of. Even partial answers help. My uncle won his case partly because he remembered three folder names from 2008 that no one else would know.
You'll get a yes or no within 24 hours, usually. If no, you can resubmit with more info. He resubmitted twice. Don't give up after one rejection — that's actually expected.
Fix 3 — "We detected unusual activity"
You typed the password right but Microsoft is suspicious. Maybe you're traveling, maybe you signed in on a new device, maybe you used a VPN.
You'll see a "Help us protect your account" page asking you to verify with your phone or recovery email. Just do it — it's annoying but the system is doing its job.
If your verification info is current, this resolves in 2 minutes. If it's not, you're back to Fix 2.
Pro tip nobody mentions: if you travel a lot, sign in before you board the plane from the new country and approve the verification then. Otherwise you land in Bangkok at 11 PM, can't get into your inbox to receive a hotel confirmation, and it's a bad night.
Fix 4 — Lost your phone with the Authenticator app
This is the one that makes people panic. Don't.
If you set up Authenticator and never made a backup, you have three lifelines:
-
Your other recovery methods. When you set up two-step verification, Microsoft made you add a backup. Phone number, alternate email, recovery code (a 25-character string they showed you once and told you to print — be honest, did you?). Use whatever you have at https://account.live.com/password/reset and pick "I don't have any of these" if no option fits.
-
The recovery code. If you printed it (or screenshot it, or saved it in your password manager — please tell me you did), enter it at https://account.live.com/recover. This bypasses two-step verification entirely. Then immediately set up new auth methods.
-
The Authenticator backup. If you turned on cloud backup in Authenticator (Settings -> Backup -> on), and you remember the personal account that was used as the backup destination, you can restore to a new phone. Install Authenticator on the new phone -> Add account -> Restore from backup -> sign in to that personal account. The codes return.
If none of these work — Fix 2.
Fix 5 — Account permanently disabled
Worst case. You see "This account has been suspended" or "We're unable to recover this account."
Reasons: violation of terms (often automated and wrong), suspected fraud, payment issues for paid services like Xbox Live or Microsoft 365 family.
There's a separate appeal path at https://account.live.com/Reputation/Appeals/Unblock. It's a different form than the identity verification one. Be specific. Mention what you actually use the account for. Don't argue, don't accuse. The reviewer is a human and they read these.
I've seen accounts come back from this state. I've also seen them stay dead. About 50/50 in my experience. Have a backup plan — start moving important emails to a new account, download your OneDrive contents (you can still do this through Microsoft's data export tool even when the account is suspended).
A few things that don't work (so you don't waste time)
- Calling Microsoft support. They can't help with personal account sign-in. They'll tell you to use account.live.com/acsr. Save yourself the hold music.
- Clearing browser cookies. Sometimes helpful for sign-in glitches but won't recover a forgotten password or lost phone.
- Reinstalling Windows. Doesn't reset your account. The account lives on Microsoft's servers, not your laptop.
- Waiting it out. Suspensions don't auto-expire. You have to appeal.
Once you're back in — set this up so it doesn't happen again
Five minutes now saves a week of recovery hell later.
Go to https://account.live.com/proofs/Manage. Add or update:
- A working phone number (your current one, not a landline you don't answer)
- A backup email (not another Microsoft account — use Gmail or your work email)
- The Microsoft Authenticator app
- Print the 25-character recovery code. Tape it inside your passport, in your wallet, in your safe. Wherever you'd find it during a panic. Don't store it digitally on the same device you use Authenticator on.
Turn on two-step verification if you haven't (Security -> Advanced security options -> Two-step verification -> On). It blocks 99% of account takeover attempts. The 1% it lets through still goes to your phone for approval.
My uncle has a typed list now. Phone number, backup email, recovery code on the back of a photo of my grandmother that he keeps in a frame. Belt and suspenders. He'll never lose access again.
That's the goal. Not "be paranoid about Microsoft locking you out." Just — set up the recovery options before you need them. They take five minutes. Then this whole article becomes something you read once and never need.
One Microsoft 365 tip every Tuesday.
Practical tutorials, troubleshooting, and shortcuts — straight to your inbox. No spam. Unsubscribe anytime.
Related articles
Microsoft 365 keeps signing me out — fix the trust state
monasteele.com
Microsoft 365 keeps signing me out — fix the trust state
If Office, Outlook or Teams keeps forgetting your account, the cause is usually a broken work-account trust state on the device. Here is how to repair it without nuking your Windows profile.
Office 365 won't let you sign in — every fix that actually works
monasteele.com
Office 365 won't let you sign in — every fix that actually works
Six different things can break Office 365 sign-in and they all show the same useless error message. Here's how to tell them apart and get back into your account in under ten minutes.
Microsoft Account vs Work or School Account — what's the difference?
monasteele.com
Microsoft Account vs Work or School Account — what's the difference?
The single most confusing thing about Microsoft 365 sign-in. Here's what each account type is, why you might have two, and how to keep them straight.