Skip to content
Vectel
Support/Security

What if all admins are locked out or MFA is down?

A break-glass account is a global admin with a long random password, excluded from all Conditional Access blocks, monitored on use.

Try this first

  1. 1Create 1 cloud-only account, not tied to a person
  2. 2Password 64+ characters, split between 2 people in a physical safe
  3. 3Exclude from all Conditional Access policies
  4. 4Alert on every sign-in via Entra or SIEM

When to bring us in

If you don't have one yet, set it up this week.

See also

None of the above fits?

Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.

Who are you?

For the AI question we need your email and company, so we can follow up if the AI gets stuck, and to prevent abuse.

Limited to 2 questions per hour and 5 per day, kept lean so the AI stays useful. For more, contacting us directly works better for you and us.

Or skip the DIY entirely

Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.

Bring us inHow Managed IT works