What is email one-time password (OTP) and when is it required?

Article author
Jing Wen Ng
  • Updated

When you log in to Remote using your email and password, you’ll be asked to enter a 6-digit code sent to your email inbox. This code is called an email one-time password (OTP). It helps keep your account secure, even if 2FA is not turned on yet.

Important: The email is sent by the domain no-reply@otp.remote.com

When do I need to enter email OTP?

Email OTP is required when:

  • You log in using your email and password
  • You haven’t set up two-factor authentication (2FA)
  • You’re required to set up 2FA but haven’t done it yet

This step appears after you enter the correct password, but before you can access your Remote account.

Note: If you log in using SSO (for example, via Okta), email OTP does not apply.

How it works

  • A 6-digit code is sent to your email after you enter your password.
  • The code is valid for 5 minutes.
  • You can request a new code every 30 seconds if needed.
Screenshot 2026-02-13 at 9.54.13 AM (2).png
  • You have up to 5 tries to enter the correct code.
  • If you enter the wrong code 5 times, your account will be locked.

What happens after email OTP?

If your account requires 2FA, you'll be prompted to set it up after completing the email OTP step the first time you log in. If you've already set up 2FA, you'll just need to enter your 2FA code . This flow prevents attackers from enabling 2FA on a compromised account.

Frequently asked questions (FAQs)

  • I didn't receive the email code. What should I do?

    Check your spam or junk folder in case the email was filtered. Wait at least 30 seconds, then request a new code. Make sure the email address you typed in the login screen is correct. If the code still doesn't arrive, contact us through live chat for help.

  • The code I received has expired. What now?

    Email codes are only valid for 5 minutes. Request a new code and enter it right away.

  • My account is locked. How do I regain access?

    After 5 incorrect code attempts, your account is automatically locked as a security measure. Follow the steps to unlock your account, then try logging in again. See also: How do I unlock my Remote account?

  • I received an OTP code I didn't request. What should I do? If you receive an OTP code that you didn't request, it may indicate that someone is attempting to access your account. Take the following steps immediately:
    • Do not share the OTP code with anyone
    • Reset your password as soon as possible to secure your account
    • Set up 2FA for an additional layer of security
    • Contact our support team if you suspect unauthorized access attempts

  • What's the difference between email OTP and 2FA?

    Email OTP (one-time password) is a 6-digit code sent to your email inbox each time you log in.

    2FA (two-factor authentication) is an additional security layer that requires a code from an authenticator app. It provides stronger protection for your account.

    ⚠️ We strongly recommend setting up 2FA. Email OTP alone won't protect your account if someone gains access to both your password and email.

Was this article helpful?

4 out of 5 found this helpful

Submit a request

Related articles

Comments

0 comments

Article is closed for comments.