When switching between users, are you logging out from the IdP (i.e. Microsoft AD)?
Unless you’re including the federated parameter in your call to the /v2/logout endpoint, only the Auth0 session will be invalidated and subsequent logins asking for AD credentials will use the existing IdP session.
Please take a look at the following articles for more information: