In some situations, you may be asked to complete an additional verification step when logging in — such as confirming a request from your mobile app or entering a code sent to your email. This helps ensure only you can access your account, especially on new or unrecognized devices. You may be required to verify your login if:
You’re logging in from a new or unrecognized device
There’s been an attempt to log in from an unusual location
You’re updating sensitive account information
You’ve requested a security check on your account
Depending on your account and device setup, you may see different verification methods. Below are the most common ones.
One-Time Password (OTP)
An OTP (One-Time Password) is a temporary, unique code that we send to your email to verify your identity when you log in, especially from a new device or location. This added layer of security helps protect your account from unauthorized access. If you're ever unsure whether an OTP email is legitimate, check that it was sent from one of our official domains—noreply@tm.openai.com or otp@tm1.openai.com.
How Does the OTP Process Work?
Login Attempt: When you try to log in or make changes to your account, we check if the action requires extra verification.
OTP Sent: If additional verification is needed, we send a six-digit OTP to your registered email address.
Enter OTP: You’ll be prompted to enter the OTP on the login screen to confirm it’s really you.
Access Granted: Once you enter the correct OTP, you’ll be able to complete your login or action.
This process helps ensure that only you—or someone you authorize—can access your account.
Common OTP Issues and How to Fix Them
Use the table below to identify your problem and find the solution quickly.
| Scenario | Possible Cause | Solution |
|---|---|---|
| Didn’t Receive the OTP Email? | Email filters (spam, junk), incorrect email address on file | Check your spam/junk folder, resend the OTP, verify your email address, or contact support. |
| Entered the OTP, but It’s Not Working? | Typo or using an expired/older OTP | Double-check the code, request a new OTP, and check for typos. |
| OTP Expired Before You Could Use It? | OTPs are time-sensitive and expire quickly | Request a new OTP and enter it promptly. |
| Account Locked After Multiple Failed Attempts? | Multiple incorrect OTP entries | Wait for the lock to expire, request a new OTP, or contact support if needed. |
| Received a Login Alert from an Unknown Location? | Login attempt from an unrecognized location or device | Update your password immediately, and monitor your account activity. |
Push Notification — Login Approval
When additional verification is needed, we may send a push notification to the ChatGPT app so you can approve or deny the attempt. If push approval is unavailable or can’t be delivered, you can verify with a one-time code sent to your email.
How Does the Push Approval Process Work?
Login Attempt: When you try to log in or make changes to your account, we check if the action requires extra verification.
Push Sent: If additional verification is needed and you're signed into the ChatGPT mobile app, we send a push notification asking you to approve the login.
Approve or Deny: Tap “Yes, it’s me” in the app if it's you. If you didn’t initiate the login, tap “No, deny access” to block the attempt.
Access Granted: Once approved, you'll be able to complete your login or action.
This process helps ensure that only you—or someone you authorize—can access your account.
Common Push Notification Issues and How to Fix Them
Use the table below to identify your problem and find the solution quickly.
| Scenario | Possible Cause | Solution |
|---|---|---|
| Didn’t receive the push notification, or login didn’t complete? | App not logged in, notifications disabled, push approval may not yet be available for your device or account profile, or poor connection. | Ensure you're signed in to the ChatGPT app, notifications are enabled, and your device has internet access. If the push still doesn't arrive or you cannot complete the process, please select “Try with email” on the device you're logging in from to receive a one-time code in your inbox instead. |
| Received a Login Request You Didn't Make | Unknown login attempt | If you didn’t initiate the login, tap “ No, deny access” to block the attempt. We also recommend to reset your password , review your account security settings and enable multi-factor authentication (MFA) for additional protection. Visit our Account Security Guide for more safety tips. |
Need More Help?
If you’re still having trouble with your OTP or need more details on any of the scenarios above, check out our full help center article:
How do I change my account password?