What is the correct way to reset all MFA enrollments for a user ?
Can I use DELETE /api/v2/users/{id}/authenticators endpoint for this ?
Thanks @pratyush.pandey
But this API not return all methods
I have a test user with two MFAs
But API only return bellow response
[
{
“id”: “totp|dev_fHUBYxYS5Cja18zA”,
“type”: “totp”,
“confirmed”: true,
“created_at”: “2024-10-31T04:53:49.185Z”,
“last_auth_at”: “2024-10-31T04:55:40.515Z”
}
]
Also when I use /api/v2/users/{userId}/authenticators API it returns all methods
[
{
“id”: “email|dev_UoYMg8RRQIcMz6DW”,
“type”: “email”,
“confirmed”: true,
“name”: “gand******@veri***********”,
“created_at”: “2024-10-31T04:39:39.000Z”
},
{
“id”: “totp|dev_YAnfIlYvEHeTu6e3”,
“type”: “totp”,
“confirmed”: false,
“created_at”: “2024-10-31T04:49:54.000Z”
},
{
“id”: “totp|dev_fHUBYxYS5Cja18zA”,
“type”: “totp”,
“confirmed”: true,
“created_at”: “2024-10-31T04:53:49.000Z”,
“last_auth_at”: “2024-10-31T04:55:40.000Z”
}
]
Can I know the difference of these endpoints ?
api/v2/users/{userId}/authentication-methods
/api/v2/users/{userId}/authenticators
Welcome to the Auth0 Community!
If you want to delete all MFA enrollments of a user, you can go on the dashboard to that user’s details and click the Reset MFA button. If you want to use the Management API you can follow the link @pratyush.pandey provided.
The api/v2/users/{userId}/authentication-methods endpoint removes one of the enrollments while the api/v2/users/{userId}/authenticators removes all authenticator apps such as the Auth0 Guardian app or Google Authenticator.
If you have any other questions feel free to reach out.
Have a good one,
Vlad