Overview
- Users who rely on YubiKeys or passkeys must re-enroll them via Settings > Security > Two-factor authentication to keep access.
- Accounts not updated by November 10 will be locked until users re-enroll, choose another 2FA method, or disable 2FA.
- Authenticator apps and SMS-based codes are not affected by the change.
- X explains that keys registered to twitter.com will not work on x.com because security credentials are bound to the domain used at enrollment.
- Retiring twitter.com may also disrupt links, embeds, and third‑party integrations that still reference the old domain.