One of the following permissions is required to call this API. To learn more, including how to choose permissions, see Permissions.
Permissions acting on self
Permission type
Permissions (from least to most privileged)
Delegated (work or school account)
UserAuthenticationMethod.ReadWrite
Delegated (personal Microsoft account)
Not supported.
Application
Not supported.
Permissions acting on other users
Permission type
Permissions (from least to most privileged)
Delegated (work or school account)
UserAuthenticationMethod.ReadWrite.All
Delegated (personal Microsoft account)
Not supported.
Application
UserAuthenticationMethod.ReadWrite.All
For delegated scenarios where an admin is acting on another user, the administrator needs the Authentication Administrator or Privileged Authentication AdministratorAzure AD role.
HTTP request
Remove a FIDO2 authentication method from your own account. For a signed-in user to update their own authentication method, they must have satisfied a multi-factor authentication requirement during sign in.
DELETE /me/authentication/fido2Methods/{id}
Remove a FIDO2 authentication method from another user's account.
// Code snippets are only available for the latest version. Current version is 5.x
var graphClient = new GraphServiceClient(requestAdapter);
await graphClient.Users["{user-id}"].Authentication.Fido2Methods["{fido2AuthenticationMethod-id}"].DeleteAsync();
// THE CLI IS IN PREVIEW. NON-PRODUCTION USE ONLY
mgc users authentication fido2-methods delete --user-id {user-id} --fido2-authentication-method-id {fido2AuthenticationMethod-id}
<?php
// THIS SNIPPET IS A PREVIEW VERSION OF THE SDK. NON-PRODUCTION USE ONLY
$graphServiceClient = new GraphServiceClient($tokenRequestContext, $scopes);
$graphServiceClient->users()->byUserId('user-id')->authentication()->fido2Methods()->byFido2AuthenticationMethodId('fido2AuthenticationMethod-id')->delete()->wait();
# THE PYTHON SDK IS IN PREVIEW. FOR NON-PRODUCTION USE ONLY
graph_client = GraphServiceClient(request_adapter)
await graph_client.users.by_user_id('user-id').authentication.fido2_methods.by_fido2_method_id('fido2AuthenticationMethod-id').delete()