Skip to main content

Passwordless account recovery

When passwordless authentication is set up by the administrator, the user can create their account by entering a username (email) and by verifying themselves with either of the following:

  • Passkeys
  • The access app.
  • Email codes.

If the administrator also allows signup with social accounts, the user can also create their account by logging in with their social account.

The login authentication methods that the user sets up define the authentication methods they can use to recover their account.

Account recovery with passkeys

If a user registered an email and passkey, but does not have access to their passkey, they can recover their account using the fallback option of email code verification.

  1. On the Identity Cloud login page, enter the username (email) registered to the account and click Continue.
  2. On the Verification in progress page select Skip. An email with a code is sent to the user's registered email inbox.
  3. Enter the code received in the email on the Email verification page and click Verify.

After successful verification the user is logged into your application.

Account recovery with the access app

If a user registered an email and used the access app on a device for authentication, but can not use the access app for authentication, they can recover their account using the fallback option of email code verification.

  1. On the Identity Cloud login page, enter the username (email) registered to the account and click Continue.
  2. On the Scan the QR code with the Access app login page, click Try another way to proceed with email code verification.
  3. Enter the code received in the email on the Email verification page and click Verify.

After successful verification the user is logged into your application.

Account recovery with Email codes

If the user registered only an email, and only has email code verification set up, they can only recover their account by accessing that email inbox.

If the user can no longer access the inbox of the email they signed up with, they can only recover their account with administrator support.

Social login

When the user creates their account with a social identity provider, they can only recover their social account through the recovery flow of that social identity provider.

Once the social account is recovered, the user can use it to continue logging in on the Identity Cloud login page.