![SurePassID_CMYK_600.png]](https://support.surepassid.com/hs-fs/hubfs/SurePassID_CMYK_600.png?height=40&name=SurePassID_CMYK_600.png){kind=small}
How do I fully uninstall the SurePassID Authentication Server (SPAS)?
This guide provides step-by-step instructions for fully uninstalling the SPAS system. Back up any critical data in the SurePassID database before proceeding - removal is permanent!
Step-by-Step Instructions
Uninstall the SPAS application via Installed Apps/Add Remove Programs/Apps and Features depending on the OS used.
Open IIS Manager to remove websites:
-
Launch Internet Information Services (IIS) Manager (search for "IIS" in the Start menu).
-
In the Connections pane, expand the server node, then expand "Sites." Identify the three SPAS-related websites and remove each SPAS website.
-
Right-click each website (e.g., mfa.{your-domain}) and select "Remove." Confirm the deletion. Repeat for all three sites.
-
If a site cannot be removed because it is running, right-click it first and select "Stop," then remove it.
- Remove associated application pools.
- In IIS Manager, expand the server node and click "Application Pools." Locate the three pools, usually named to match the websites (e.g., mfa.{your-domain}, saml2.{your-domain}, api.{your-domain}).
- Right-click each pool and select "Remove." Confirm the action.
- If removal fails due to active use, stop/recycle the pool or end related w3wp.exe processes in Task Manager.
- Edit the hosts file to remove DNS entries.
- Right-click Notepad and select "Run as administrator."
- Go to File > Open, then navigate to: C:\Windows\System32\drivers\etc\hosts
- Locate and delete any SPAS-related lines added by the installer, such as:
- 127.0.0.1 mfa.{your-domain}
- 127.0.0.1 saml2.{your-domain}
- 127.0.0.1 api.{your-domain}
- Save the file.
- If you cannot save the file, confirm you are running Notepad as administrator.
- Delete the installation folder.
- Open File Explorer and navigate to: C:\Program Files (x86)
- Right-click the "SurePassID Corp" folder andselect "Delete."
- Confirm permanent deletion.
- If files are in use, close related processes in Task Manager or restart the machine and retry.
- Open SQL Server Management Studio (SSMS).
- Launch SSMS and connect to your SQL Server instance using an account with SQL sysadm privileges (Windows Authentication or SQL Authentication).
- Delete the SPAS SQL login.
- In Object Explorer, expand Security > Logins.
- Locate the SPAS login, typically named something like SPUserr_202x, SPUser_2024, or similar (check for names created around the time of installation).
- Right-click the login and select "Delete." Confirm.
- Drop the SurePass database.
- In Object Explorer, expand Databases.
- Locate the SPAS database, typically named SurePassDB_202x, SurePassDB_2024, or similar.
- Right-click the database > Delete. In the Delete Object dialog, check "Close existing connections" if available, then click OK to confirm.
- If you receive an error about active connections, run this T-SQL first (right-click the server > New Query): sql ALTER DATABASE [SurePassDB_202x] SET SINGLE_USER WITH ROLLBACK IMMEDIATE;
- DROP DATABASE [SurePassDB_202x];
- Replace [SurePassDB_202x] with your actual database name.
Additional Tips Always back up the database first if it contains any data you might need later (right-click database > Tasks > Back Up…).
If you are unsure of the exact database or login names, check the most recently created items under Databases and Logins around the installation date.
Conclusion
After completing these steps, the SPAS system—including the application, IIS components, hosts entries, folder, SQL login, and database—should be completely removed. Verify by rechecking Installed apps, IIS Manager (if applicable), the hosts file, installation directory, and SSMS. Restart the machine if needed to ensure all changes take effect. If you encounter persistent errors, reach out to SurePassID support with details of the step that failed.