Two-Factor Authentication Question

We use Rocketchat in a production (no users have internet) environment. One of our users enabled 2FA (which we don’t use) and now it’s asking for codes to log him into his account. Is there a way to administratively undo his 2FA or should I just make him a new account? He’s had this current account for 2 years.