> For the complete documentation index, see [llms.txt](https://docs.sonarsource.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.sonarsource.com/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/recovery-account.md).

# Recovery account for SSO

Enterprise administrators can use the recovery account feature to regain access to their enterprise if Single Sign-On (SSO) login becomes unavailable. This process uses a recovery-specific password combined with a one-time verification code delivered via email.

{% hint style="warning" %}
Configuring a recovery account is strongly advised for all enterprise administrators.
{% endhint %}

## Configuring your recovery account

You must be an enterprise admin and you must use your SSO account.

Proceed as follows:

1. Log in to SonarQube Cloud with your SSO account and select the account icon in the top right corner.
2. In the menu, select **My account**. The **My account** page opens.
3. In **Recovery account**, select the **Generate recovery password** button. A [password](#recovery-password-format) is generated.
4. Select **Copy** to copy the password and keep it in a safe place. The password will not be visible anymore once you’ve left the page.

The recovery account status is set to **Active** on the page.

{% hint style="info" %}
You can access directly the **My account** page from the **SSO & provisioning** page through the **Additional configuration** > **Recovery account** section.
{% endhint %}

## Using the recovery access

If you lost access to your enterprise through SSO, proceed as follows:

1. On the **Log in with Single Sign-On** page, select the **Use recovery access link** at the bottom.
2. The **Recover access** page opens.
3. Enter the email address associated with your enterprise admin’s SSO account.
4. Enter your recovery password.
5. Select **Confirm**. The **Verify your email address** page opens.
6. Enter the verification code received via email and select **Submit**.

## Rotating your recovery password

For security reasons, it's recommended to rotate your recovery password regularly:

1. Log in to SonarQube Cloud with your enterprise admin's SSO account.
2. Select the account icon in the top right corner.
3. In the menu, select **My account**. The **My account** page opens.
4. In **Recovery account**, select **Rotate password**. A new password is generated.
5. Select **Copy** to copy the password and keep it in a safe place. The password will not be visible anymore once you’ve left the page.

## Disabling your recovery account

1. Log in to SonarQube Cloud with your enterprise admin's SSO account.
2. Select the account icon in the top right corner.
3. In the menu, select **My account**. The **My account** page opens.
4. In **Recovery account**, select **Disable access** and confirm.

## Recovery password format

Recovery passwords follow these rules:

* **Length:** 30 characters
* **Characters:** Uppercase (A–Z), lowercase (a–z), digits (0–9), and special characters (!@#$%^&)
* **Repetition:** No more than 2 identical characters in a row

## Related pages

* [Set up SSO](/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/set-up-sso.md)
* [About SSO and provisioning](/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/about.md)
* [Recovering enterprise admin access](/sonarqube-cloud/administering-sonarcloud/managing-enterprise/recovering-enterprise-admin-access.md)
* [Recovering organization admin access](/sonarqube-cloud/administering-sonarcloud/managing-organization/recovering-org-admin-access.md)
* [Recovering project admin access](/sonarqube-cloud/administering-sonarcloud/managing-organization/manage-org-projects/manage-project-permissions/recovering-admin-access.md)<br>


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.sonarsource.com/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/recovery-account.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.