Disable user MFA
POST /api/admin/users/{id}/disable-2fa
POST
/api/admin/users/{id}/disable-2fa
Owner-only recovery action that clears TOTP, passkeys, pending MFA challenges, and remember-me sessions for the target user.
Authorizations
Section titled “Authorizations ”Parameters
Section titled “ Parameters ”Path Parameters
Section titled “Path Parameters ” id
required
string format: uuid
Responses
Section titled “ Responses ”Disable user MFA response
object
passkeys_deleted
required
integer
sessions_invalidated
required
integer
status
required
string
totp_disabled
required
boolean
Forbidden
object
message
string
Not found
object
message
string