Every User can deactivate other users?

Occasional Contributor


in our networks every user can deativate other users. Is this working as designed?



6 Replies
That's not right. I would suggest logging a Service Request straight away. Only admins should be able to deactivate other users.

Worth checking your Office 365 Global admins who are automatically assigned Yammer Verified Admin rights and also check any Network admins that look out of place -


Go to Settings > Network Admin and then choose Admins.


"Yammer offers two levels of network‐wide admin privileges: Network Admin and Verified Admin. Both can configure settings that standard users cannot."  


Only Network admins or Verified admins can Remove or block any user.  See the Yammer admin guide for more details.  Also, check out the Manage Yammer users across their life cycle from Office 365 guide.


If all of this is as expected, logging a Service Request is excellent advice.


best response confirmed by Sebastian Summerer (Occasional Contributor)
Yes, that is working as designed and is a long standing feature. The "deactivated" user gets an email and if they login the account is immediately available again.

I want to share the question with you from Microsoft support:


We had from past where we had few customer had similar question and design change request but it got rejected by engineering team and primary justification around having that functionality in yammer: Some IT admins have theorized about "bad users", but for Yammer, the users are people trying to be productive at their jobs. They're not going to risk getting in trouble just to temporarily suspend someone as a prank. The reality of this issue is that it's not an issue. Its very few inappropriate suspensions actually happen, and the consequences of those suspensions are very minimal because the suspended user can easily reactivate their account.

Thanks for feeding this back, it may help others that also come across this behaviour.  So as has been said, it's by design and arguably a quirk of the system but one unlikely to have much impact.

I would also add to Sebastian's response that if you navigate in to the "Remove users" section in the admin console, you are able to see who has deactivated particular users. If, in the worst case scenario, someone were to erroneously or maliciously deactivate someone, it can be rectified quickly (and you are able to also reactivate the user this way, too).


I manage a very large network and we have not encountered any instances of folks misusing this feature.