> ## Documentation Index
> Fetch the complete documentation index at: https://auth0.com/llms.txt
> Use this file to discover all available pages before exploring further.

# How to Block and Unblock Users as a Tenant Administrator

> Control a user's ability to log in to your application by adding or removing tenant administrator blocks.

Tenant administrators can block users to prevent them from accessing applications (and unblock them to allow access again).

If a blocked user tries to log in to an application, they are redirected to the callback URL with the following error parameters:

```
error=unauthorized&error_description=user%20is%20blocked
```

This event is also recorded in your [tenant logs](/docs/deploy-monitor/logs/log-event-type-codes) as a **Failed Login** (`f`) event with the description `user is blocked`.

## Add tenant administrator blocks

To add a tenant administrator block using the Auth0 Dashboard:

1. Go to the [Dashboard > User Management > Users](https://manage.auth0.com/#/users).
2. Select the name of the user you want to block.
3. On the **Details** tab, next to **Block user**, select **Block**.

This option is also available in the **...** menu to the right of the user's name.

To add a tenant administrator block using the Management API, use the [Update a User endpoint](/docs/api/management/v2/users/patch-users-by-id) (`PATCH /users/{id}`) to set the user's [`blocked` attribute](/docs/api/management/v2/users/patch-users-by-id#body-blocked) to `true`.

## Remove tenant administrator blocks

When a tenant administrator blocks a user, the block does not expire automatically. A tenant administrator must unblock the user to restore their access to applications.

<Callout icon="file-lines" color="#0EA5E9" iconType="regular">
  [Brute-force protection](/docs/secure/attack-protection/brute-force-protection) blocks are handled separately from tenant administrator blocks. Learn more about [removing brute-force protection blocks](/docs/secure/attack-protection/brute-force-protection#removing-brute-force-protection-blocks).
</Callout>

To remove a tenant administrator block using the Auth0 Dashboard:

1. Go to the [Dashboard > User Management > Users](https://manage.auth0.com/#/users).
2. Select the name of the user with the tenant administrator block.
3. On the **Details** tab, next to **Block user**, select **Unblock**.

This option is also available in the **...** menu to the right of the user's name.

To remove a tenant administrator block using the Management API, use the [Update a User endpoint](/docs/api/management/v2/users/patch-users-by-id) (`PATCH /users/{id}`) to set the user's [`blocked` attribute](/docs/api/management/v2/users/patch-users-by-id#body-blocked) to `false`.

If you use the Management API to reset a user's password, it also removes tenant administrator blocks.

## Learn more

* [Manage User Access to Applications](/docs/manage-users/user-accounts/manage-user-access-to-applications)