Sign in

Admin force-logout or MFA reset

Admin terminates all active sessions for a user or resets their MFA enrollment.

When this happens: Admin navigates to User Management — [User] — Terminate Sessions / Reset MFA.

Step by step

  1. 1

    Open user detail and clicks Terminate Sessions.

    EasyCRM shows a confirmation: This will terminate all active sessions for [User]. They will need to log in again.

  2. 2

    Click Confirm.

    Invalidates all refresh tokens for the user. EasyCRM shows success: All sessions for [User] have been terminated.

  3. 3

    On their next API call receives HTTP 401 and is redirected to the login page. (*Asynchronous effect on the target user.*).

If something goes wrong

Target is the current admin

Admin attempts to force-logout themselves. System allows it but warns: You are about to terminate your own sessions. You will be logged out immediately

Good to know

  • MFA reset deletes TOTP secret and all recovery codes.
  • If role enforces MFA, you are forced to re-enroll on next login.
  • Force-logout invalidates all refresh tokens; access tokens remain valid until their natural expiry but refresh will fail.