Once an admin has enabled Two-Factor Authentication (2FA), they cannot repeatedly fail login attempts without some consequence. (This is to prevent "brute force" hacking attacks from trying over and over to log into your admin accounts.)
So, if an admin fails to log in too many times, they will become "locked out". If your system is set for a lockout time interval, they'll need to wait until that interval has passed.
However, if you're account is set to lock out until "unlocked by admin", then your Account Admin will need to take action.
How to unlock another admin
To unlock a locked admin's locked account:
- Log into the admin console as the Account Admin
- Go to the People >> Admins >> Active list and locate the desired admin who locked himself/herself out.
- Click on that admin's name and scroll down to the bottom of their Details tab.
- Click the Unlock button to reset their lockout and allow that admin to try logging in again.