X security key re-enrollment deadline November 10

X (formerly Twitter) has announced a critical deadline for users relying on security keys for two-factor authentication. All accounts using this authentication method must re-enroll their security keys by November 10, 2025, or risk being locked out of their accounts.

Why the Security Key Update?

The re-enrollment requirement stems from X’s transition away from the “twitter.com” domain to “x.com.” When users re-enroll, their security keys will be associated with the new x.com domain. X will automatically prompt users to update their information, but the company recommends verifying your settings manually to ensure uninterrupted access.

This change only affects users with security keys or Yubikeys and does not impact those using other two-factor authentication methods. However, many users may be unfamiliar with this requirement if they recently switched to security keys.

Background on X’s 2FA Changes

This update follows X’s 2023 decision to eliminate SMS authentication for most users as part of its cost-cutting measures. That controversial change limited SMS 2FA to Premium subscribers, pushing many users toward alternative security methods like security keys. The shift prompted widespread concern among users seeking reliable two-factor protection.

For account security, X continues recommending that all users enable two-factor authentication. If you’re unsure whether your account uses security key authentication, you can check your settings and re-enroll or add a new key at your account preferences page.

Missing the November 10 deadline won’t permanently disable your account—you can regain access by re-enrolling your security key, switching to a different 2FA method, or disabling 2FA entirely, though the latter is not recommended.