diff --git a/contrib/openldap/core-fd-conf.schema b/contrib/openldap/core-fd-conf.schema
index b3e113fb5c45769185604bee42f5349e78f600ce..88d151570d0a89296d35c47e8f4f5859c71aa44e 100644
--- a/contrib/openldap/core-fd-conf.schema
+++ b/contrib/openldap/core-fd-conf.schema
@@ -580,6 +580,12 @@ attributetype ( 1.3.6.1.4.1.38414.8.110.9 NAME 'fdPasswordRecoveryUseAlternate'
   SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
   SINGLE-VALUE )
 
+attributetype ( 1.3.6.1.4.1.38414.8.110.10 NAME 'fdPasswordRecoveryLoginAttribute'
+  DESC 'Fusion Directory - Password recovery login attribute (usually uid)'
+  EQUALITY caseExactIA5Match
+  SYNTAX 1.3.6.1.4.1.1466.115.121.1.26
+  SINGLE-VALUE )
+
 
 # Object Class
 objectclass ( 1.3.6.1.4.1.38414.8.2.1 NAME 'fusionDirectoryConf'
@@ -627,7 +633,7 @@ objectclass ( 1.3.6.1.4.1.38414.8.2.3 NAME 'fdPasswordRecoveryConf'
     fdPasswordRecoveryMailSubject   $ fdPasswordRecoveryMailBody  $
     fdPasswordRecoveryMail2Subject  $ fdPasswordRecoveryMail2Body $
     fdPasswordRecoveryValidity      $ fdPasswordRecoverySalt      $
-    fdPasswordRecoveryUseAlternate
+    fdPasswordRecoveryUseAlternate  $ fdPasswordRecoveryLoginAttribute
   ) )
 
 # Dashboard Object Class
diff --git a/html/class_passwordRecovery.inc b/html/class_passwordRecovery.inc
index ac49bff5fefd208d651b006b27ed70744f5ea0c1..ca92813414b6995f53317dcee7719d2ea334312c 100644
--- a/html/class_passwordRecovery.inc
+++ b/html/class_passwordRecovery.inc
@@ -374,6 +374,8 @@ class passwordRecovery extends standAlonePage {
 
     $this->usealternates  = $config->get_cfg_value('passwordRecoveryUseAlternate');
 
+    $this->loginAttribute = $config->get_cfg_value('passwordRecoveryLoginAttribute', 'uid');
+
     @DEBUG(DEBUG_TRACE, __LINE__, __FUNCTION__, __FILE__, $config->get_cfg_value('passwordRecoveryActivated'), "passwordRecoveryActivated");
     return ($config->get_cfg_value('passwordRecoveryActivated') == "TRUE");
   }
diff --git a/plugins/config/class_recoveryConfig.inc b/plugins/config/class_recoveryConfig.inc
index d16163f1852a0d547b04f9ec93eb188e0aea264d..9492f5011601381876e24cbe2e8c5828d5d5a0d0 100644
--- a/plugins/config/class_recoveryConfig.inc
+++ b/plugins/config/class_recoveryConfig.inc
@@ -74,6 +74,11 @@ class recoveryConfig extends simplePlugin
             'fdPasswordRecoveryUseAlternate',
             FALSE
           ),
+          new StringAttribute (
+            _('Login attribute'), _('Usually uid, but you can use something else for instance in case of SSO'),
+            'fdPasswordRecoveryLoginAttribute', TRUE,
+            'uid'
+          ),
         )
       ),
       'first_email' => array (