diff --git a/src/Umbraco.Web/Mvc/AdminTokenAuthorizeAttribute.cs b/src/Umbraco.Web/Mvc/AdminTokenAuthorizeAttribute.cs
index de8cf65a5351..6c58c6fd9767 100644
--- a/src/Umbraco.Web/Mvc/AdminTokenAuthorizeAttribute.cs
+++ b/src/Umbraco.Web/Mvc/AdminTokenAuthorizeAttribute.cs
@@ -87,9 +87,9 @@ protected override bool AuthorizeCore(HttpContextBase httpContext)
                 var encrypted = Encoding.UTF8.GetString(bytes);
                 //decrypt the string
                 var text = encrypted.DecryptWithMachineKey();
-                
-                //split
-                var split = text.Split(new[] {"u____u"}, StringSplitOptions.RemoveEmptyEntries);
+
+                //split - some users have not set an email, don't strip out empty entries
+                var split = text.Split(new[] {"u____u"}, StringSplitOptions.None);
                 if (split.Length != 3) return false;
                 
                 //compare