X warns users to re-enroll security keys ahead of November 10 deadline

X (formerly Twitter) has warned users who rely on hardware security keys and passkeys for two-factor authentication (2FA) to re-enroll their keys by 10 November 2025 or risk being locked out of their accounts.

 

The company explained that this update is linked to its ongoing migration from the twitter.com domain to x.com.

 

 “Security keys enrolled as a 2FA method are currently tied to twitter.com; re-enrolling them will associate them with x.com, enabling retirement of the Twitter domain,” X stated.

 

Users who fail to re-enroll by the deadline will be unable to access their accounts until they either re-enroll, select another 2FA method, or disable 2FA altogether.

 

The platform, however, continues to recommend maintaining two-factor authentication for better protection against account takeovers.

 

The change affects only those using physical security keys. Users relying on authenticator apps or other 2FA options are not impacted.

 

To re-enroll, users should navigate to Settings, Security & account access, Security, Two-factor authentication, select “Security key,” remove existing keys, and follow the setup instructions to register new ones.