User Management
This page is only visible to organization administrators.
Manage your organization's users — edit profiles, reset MFA, reset passwords, deactivate, and delete accounts.
Users Table
Navigate to Users under the Admin section in the sidebar. The users table shows:
| Column | Description |
|---|---|
| Name | User's full name |
| User's email address | |
| Role | Admin or Member badge |
| Status | Active (green) or Inactive (gray) |
| Created | When the user was added |
| Actions | Edit, Reset MFA, Reset Password, Delete buttons |
Editing a User
- Click the Edit button (pencil icon) on the user row.
- An Edit User dialog appears with fields:
- Name — Update the user's name
- Role — Change between Admin and Member
- Active checkbox — Enable or disable the account
- Click Save.
Resetting MFA
If a user has lost access to their authenticator app:
- Click the Reset MFA button (key icon) on the user row.
- A confirmation dialog appears: "Reset MFA".
- Click Reset MFA to confirm.
After resetting:
- The user's MFA is disabled and recovery codes are deleted
- They can sign in with just their password
- If organization MFA is enforced, they'll be prompted to set up MFA again on next login
Resetting a Password
To force-reset a user's password:
- Click the Reset Password button (lock icon) on the user row.
- A Reset Password dialog appears.
- Click Reset Password to confirm.
The user receives a password reset email.
Deactivating a User
To temporarily disable a user's access:
- Click the Edit button on the user row.
- Uncheck the Active checkbox.
- Click Save.
When deactivated:
- All active sessions are immediately terminated
- IP rules for their sessions are revoked
- They cannot sign in
- Their status changes to Inactive (gray)
To reactivate, check the Active checkbox again and click Save.
Deleting a User
- Click the Delete button (trash icon) on the user row.
- Confirm the deletion.
Deleting a user is irreversible. Deactivate first if you're unsure.
You cannot delete the last administrator in an organization.
Audit Trail
All user management actions (MFA reset, password reset, deactivation, deletion) are recorded in the audit log with the admin's identity, timestamp, and IP address.
Next Steps
API Reference: For programmatic access, see Users API.