diff --git a/api/apps/tenant_app.py b/api/apps/tenant_app.py
index 7612fafc8..03ce97f88 100644
--- a/api/apps/tenant_app.py
+++ b/api/apps/tenant_app.py
@@ -83,7 +83,7 @@ def create(tenant_id):
 @manager.route('/<tenant_id>/user/<user_id>', methods=['DELETE'])
 @login_required
 def rm(tenant_id, user_id):
-    if current_user.id != tenant_id:
+    if current_user.id != tenant_id and current_user.id != user_id:
         return get_json_result(
             data=False,
             message='No authorization.',