diff --git a/app/policies/user_policy.rb b/app/policies/user_policy.rb
index c94a5ea4cc28d3ab12b82f33499ada1dcdc671d6..803ed2ed13418d1f9313fa1f04862bc6bc1ee8f6 100644
--- a/app/policies/user_policy.rb
+++ b/app/policies/user_policy.rb
@@ -14,7 +14,7 @@ class UserPolicy < ApplicationPolicy
   end
 
   def update?
-    user? && user.admin?
+    false
   end
 
   def destroy?
diff --git a/app/views/avo/partials/_sidebar_extra.html.erb b/app/views/avo/partials/_sidebar_extra.html.erb
index ead555fc435973bbed0db4cc8c228bf770877e18..3dc641beddb2d5ff3a6e4ab186bf0081eb5dee66 100644
--- a/app/views/avo/partials/_sidebar_extra.html.erb
+++ b/app/views/avo/partials/_sidebar_extra.html.erb
@@ -2,8 +2,10 @@
 </div>
 
 <div class="space-y-1 mb-4">
-  <%= render Avo::Sidebar::HeadingComponent.new label: "Your Account" %>
-  <div class="w-full space-y-1">
-    <%= render Avo::Sidebar::LinkComponent.new label: "Change Password", path: avo.settings_password_path %>
-  </div>
+  <% if false # temporarily hide password update so test users dont lock out one another %>
+    <%= render Avo::Sidebar::HeadingComponent.new label: "Your Account" %>
+    <div class="w-full space-y-1">
+      <%= render Avo::Sidebar::LinkComponent.new label: "Change Password", path: avo.settings_password_path %>
+    </div>
+  <% end %>
 </div>