Our User Removal Tool is used to clear out client credentials and data cached to the local MFA client. The most common use case for this method is when the client computer has a large number of users that need to be cleared out and/or if you are seeing a growing number of issues trying to enroll a user's authentication method (which is typically caused by cached credentials).
If you only have a single user whose data needs to be cleared, see our Remove Cached Credentials From Client article highlighting the built-in method through the desktop application.
The removal tool number must match that of the client version of the computer you are on. Be sure to download the corresponding client version, and follow the instructions below.
Running The UserTool
- Place the user tool where you'd like on the machine.
- Open an elevated command prompt or PowerShell where the .exe is placed or navigate to its path.
- Run the UserTool-xxxx.exe.
User Removal Tool Arguments
UserTools.exe [-r]|[-rsa][-ra][-ca][-cr] [username] [cuid]
-r remove user from local cache
-rsa remove secured apps of user in local cache
-ra remove all users
-ca add card [cuid] for user [username]
-cr remove card [cuid]
-fpe export fingerprints
-fper export raw fingerprints
*The [brackets] from Line 1 in the above example should be omitted when actually running the tool.
Example
The following command removes all users cached on the client:
UserTool-xxxx.exe -ra
UserTool Downloads
If the version you are looking for is not available, then that client and UserTool version are no longer supported.