Two Factor Authentication (TFA) is an important security mechanism, and cannot be disabled by Cisco Meraki without positively identifying the account owner. There are two methods available to ensure access is not lost: a backup phone number (with SMS auth), and a list of one time codes (with Google Authenticator).
Cisco Meraki strongly recommends configuring a backup phone number when two factor authentication via SMS is enabled. This can be done under the Two-factor authentication section of the My profile page (found in the upper right corner of Dashboard). When a backup number is enabled, the verification code can be sent to that second number in the event access to the primary phone is lost. Without a backup number, a disabled or missing phone can prevent access to Dashboard.
When configuring two-factor authentication with Google Authenticator, Dashboard creates a number of one-time use codes that can be used in the event access to one or all authenticators is lost. Any one of these ten codes can be used in place of a verification code during the login process. Each of the ten codes can only be used once. We recommend that these codes are stored in a safe location, or printed and kept in a wallet. For users with access to multiple organizations, such as Managed Service Providers, a different set of backup codes is generated for each organization.
The two methods above are the primary options for disabling or temporarily bypassing two factor authentication. If these methods cannot be utilized for any reason, the only alternative is to provide proof of identity after contacting Cisco Meraki Technical Support. There are two methods to request removal of SMS and Google Authentication for TFA.
Alternatively, if a second organization administrator with full access does not exist or is otherwise unavailable:
It is strongly recommended to send this letter with tracking, in case of postal issues.