Meraki

Community

How to disable 2FA in Meraki for single user while it was enabled for organization wide

Mytestcase
Here to help
10 hours ago
10 hours ago

How to disable 2FA in Meraki for single user while it was enabled for organization wide

Hello Team, 

 

I work with MSP; One of the Customer is enabled 2FA in their organization but existing organizations which i have access they do not enable.  When Client provided access to their organization for me it's asking for setup Authenticator app in mobile. 

 

How to disable for only 1 user for the organization which enabled Organization wide 2FA ?

 

 

Thanks and Regards,

Sateesh Billur.

Technical Lead, SME for Meraki Networks, Technical Manager
0 Kudos
3 Replies 3
alemabrahao
Kind of a big deal
Kind of a big deal
9 hours ago
9 hours ago

Take a look at this.

 

https://community.meraki.com/t5/Dashboard-Administration/Disable-2FA-for-Admins/m-p/250758#M9092

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
alemabrahao
Kind of a big deal
Kind of a big deal
9 hours ago
9 hours ago

Disabling Two-Factor Authentication

  1. Log in to the dashboard with a valid username and password.
  2. Once logged in, locate the My Profile option on the dashboard. It is on the top right corner of the screen.
  3. Click My Profile.
  4. Scroll down to the Two-factor authentication section of the page.
  5. Click Turn off two-factor authentication
  6. You will be prompted to verify your password to finalize the process.
  7. Furthermore, you may select Remove next to your previously established phone number(s) so it will not be saved for future configuration. 

The organization-wide security configuration "Force users to set up and use two-factor authentication" overrides the ability for individuals to disable TFA on their accounts.

Disabling this organization-wide security configuration change will not disable TFA for any users. Likewise, re-enabling the organization-wide security configuration will force everybody in the organization to follow the policy (both new administrators and existing administrators who temporarily disabled their individual TFA). 

If you are unable to disable TFA because you no longer have access to the original/current phone number, Meraki Support may assist after following the steps outlined here.

I am not a Cisco Meraki employee. My suggestions are based on documentation of Meraki best practices and day-to-day experience.

Please, if this post was useful, leave your kudos and mark it as solved.
0 Kudos
rhbirkelund
Kind of a big deal
Kind of a big deal
7 hours ago
7 hours ago

Unfortunately you can not exempt specific users from using MFA. If one customer enables MFA requirement, it will affect all Admins that have access to the Organization. 

 

That being said, I strongly recommend to enable MFA requirement, and set it up on your device, as it adds security. 

LinkedIn ::: https://blog.rhbirkelund.dk/

Like what you see? - Give a Kudo ## Did it answer your question? - Mark it as a Solution 🙂

All code examples are provided as is. Responsibility for Code execution lies solely your own.
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2026 Cisco Systems, Inc.