[GH-ISSUE #1435] User not removed from org after turning on 2FA #957

New issue

Closed

opened 2026-03-03 02:05:00 +03:00 by kerem · 1 comment

kerem commented 2026-03-03 02:05:00 +03:00

Owner

Copy link

Originally created by @angelus2014 on GitHub (Feb 25, 2021).
Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1435

Subject of the issue

After turning on 2FA (2 Step Login) for an organization, users that are not removed from the organization even though the option states:
"Organization members who are not Owners or Administrators and do not have two-step login enabled for their personal account will be removed from the organization and will receive an email notifying them about the change."
Not sure if this is related to issue #981

Your environment

Server version 1.9.0
Web version 2.18.1

• Install method: Docker
• Clients used: web ui
• Reverse proxy and version: none
• Version of mysql/postgresql: none
• Other relevant information:

Steps to reproduce

Create an organization without 2FA, add some users and then turn on 2FA.

Expected behaviour

As the app states, the users should be removed from the organization if they haven't turned on 2FA.

Actual behaviour

Nothing happens, users stay in the organization and can login as before. No email is sent.

Relevant logs

---

Regards,

Angelo Machils

Originally created by @angelus2014 on GitHub (Feb 25, 2021). Original GitHub issue: https://github.com/dani-garcia/vaultwarden/issues/1435 ### Subject of the issue After turning on 2FA (2 Step Login) for an organization, users that are not removed from the organization even though the option states: "Organization members who are not Owners or Administrators and do not have two-step login enabled for their personal account will be removed from the organization and will receive an email notifying them about the change." Not sure if this is related to issue #981 ### Your environment Server version 1.9.0 Web version 2.18.1 * Install method: Docker * Clients used: web ui * Reverse proxy and version: none * Version of mysql/postgresql: none * Other relevant information: ### Steps to reproduce Create an organization without 2FA, add some users and then turn on 2FA. ### Expected behaviour As the app states, the users should be removed from the organization if they haven't turned on 2FA. ### Actual behaviour Nothing happens, users stay in the organization and can login as before. No email is sent. ### Relevant logs --- Regards, Angelo Machils

kerem 2026-03-03 02:05:00 +03:00

• closed this issue
• added the
  enhancement
  duplicate
  labels

kerem commented 2026-03-03 02:05:02 +03:00

Author

Owner

Copy link

@BlackDex commented on GitHub (Feb 25, 2021):

We currently do not support 2FA on organizations.
As is mentioned in https://github.com/dani-garcia/bitwarden_rs/wiki.

Marking this as a duplicate of #981

<!-- gh-comment-id:785668358 --> @BlackDex commented on GitHub (Feb 25, 2021): We currently do not support 2FA on organizations. As is mentioned in https://github.com/dani-garcia/bitwarden_rs/wiki. Marking this as a duplicate of #981

kerem referenced this issue 2026-03-03 08:53:17 +03:00

[PR #957] [MERGED] Domain whitelist cleanup and fixes #2834

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

revert-7033-patch-1

cached-config-operations

test_dylint

1.35.7

1.35.6

1.35.5

1.35.4

1.35.3

1.35.2

1.35.1

1.35.0

1.34.3

1.34.2

1.34.1

1.34.0

1.33.2

1.33.1

1.33.0

1.32.7

1.32.6

1.32.5

1.32.4

1.32.3

1.32.2

1.32.1

1.32.0

1.31.0

1.30.5

1.30.4

1.30.3

1.30.2

1.30.1

1.30.0

1.29.2

1.29.1

1.29.0

1.28.1

1.28.0

1.27.0

1.26.0

1.25.2

1.25.1

1.25.0

1.24.0

1.23.1

1.23.0

1.22.2

1.22.1

1.22.0

1.21.0

1.20.0

1.19.0

1.18.0

1.17.0

1.16.3

1.16.2

1.16.1

1.16.0

1.15.1

1.15.0

1.14.2

1.14.1

1.14

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.1

1.9.0

1.8.0

1.7.0

1.6.1

1.6.0

1.5.0

1.4.0

1.3.0

1.2.0

1.1.0

1.0.0

0.13.0

0.12.0

0.11.0

0.10.0

0.9.0

Labels

Clear labels   

SSO

  

Third party

  

better for forum

  

bug

  

bug

  

documentation

  

duplicate

  

enhancement

  

future Vault

  

future Vault

  

future Vault

  

good first issue

  

help wanted

  

low priority

  

notes

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

troubleshooting

  

wontfix

No labels

SSO

Third party

better for forum

bug

bug

documentation

duplicate

enhancement

future Vault

future Vault

future Vault

good first issue

help wanted

low priority

notes

pull-request

question

troubleshooting

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/vaultwarden#957

No description provided.