edgelesssys · daniel-weisse · Dec 19, 2025 · Dec 18, 2025
diff --git a/docs/docs/workflows/define-manifest.md b/docs/docs/workflows/define-manifest.md
@@ -527,6 +527,7 @@
     {
         "SealMode": "ProductKey",
         "UpdateThreshold": 5,
+        "RecoveryThreshold": 3,
         "FeatureGates": []
     }
     //...
@@ -545,6 +546,10 @@
 If not set, or set to zero, all users with roles that have the `UpdateManifest` action need to acknowledge the update.
 The user submitting the update implicitly acknowledges it as well, meaning an `UpdateThreshold` of `1` requires no further acknowledgements from other users.
 
+`RecoveryThreshold` specifies the number of recovery secrets required for [multi-party recovery](../features/recovery.md#multi-party-recovery).
+If set, must be at least `2` and at most the number of defined recovery keys.
+If not set, or set to zero, all recovery keys defined in the manifest are required for recovery.
+
 `FeatureGates` allows you to opt-in to additional features that may be useful for certain use cases. The following features are available:
 
 * `SignQuoteEndpoint`: enables the [sign-quote endpoint](../reference/coordinator.md#verify-and-sign-an-sgx-quote)

diff --git a/docs/docs/workflows/recover-coordinator.md b/docs/docs/workflows/recover-coordinator.md
@@ -51,6 +51,12 @@ After recovery, you can scale the Coordinator back to the desired number of inst
 
 :::
 
+:::tip
+
+Use the [`RecoveryThreshold` manifest option](./define-manifest.md#config) to set the number of secrets required to recover the Coordinator.
+
+:::
+
 ### Example
 
 The following gives an example of a multi-party recovery workflow.
-Original file line number
+Diff line change
@@ Expand Up @@
     :::
+    :::tip
+    Use the [`RecoveryThreshold` manifest option](./define-manifest.md#config) to set the number of secrets required to recover the Coordinator.
+    :::
     ### Example
     The following gives an example of a multi-party recovery workflow.
@@ Expand Down @@