This article explains how to remove a single user from a device with multiple users via the Application Programming Interface (API) using a tool like Postman, since the current UI does not support individual removal.

• Okta Identity Engine (OIE)
• Okta API
• Application Programming Interface (API)
• Devices
• Okta Verify

Because laptops are often redistributed without being deactivated first, multiple users may be linked to one device profile, and the UI doesn't support removing a single user.

Complete the following steps to remove a single user from a device using the Okta API:

1. Set up the Headers section in Postman as follows:
   • Key: Authorization
   • Value: SSWS API token

2. Identify the specific device by performing a GET request:

   GET https://{{OktaDomain}}/api/v1/users/{{userId}}/authenticator-enrollments

3. In the JSON Response, search for "Okta Verify". Look for the deviceName that matches the target (for example, iPhone - Robert)
4. Copy the id value associated with that specific device entry (for example, pfduypnndgphde7O81d7)

5. Break the link between the user and the specific device by performing a DELETE request using the copied id:

   DELETE https://{{OktaDomain}}/api/v1/users/{{userId}}/authenticator-enrollments/{{enrollmentId}}

A successful deletion returns "204 No Content". The user is unenrolled from Okta Verify on that specific device. Their other enrolled devices remain active and unaffected.