A validated session is required for additional authentication during the performance of the most risk-related operations in the "Manage your account" panel.
You may use validated sessions if you have submitted an online transfer application.
Sessions are validated using a one-time password. The password will be texted to the mobile number listed in the online transfer application. The password will be valid for 30 minutes after being sent. The password will become invalid after three unsuccessful attempts.
Do not leave a validated session open. After you are finished, log out of the "Manage your account" panel.
Receiving registry authorization codes for gTLDs and ccTLDs
A validated session: