---
title: Overview of one-time passcodes
description: The One-Time Passcode Integration Kit generates passcodes that the user must enter to complete the authentication flow.
component: otp
page_id: otp::pf_otp_ik_overview_of_one_time_passcodes
canonical_url: https://docs.pingidentity.com/integrations/otp/pf_otp_ik_overview_of_one_time_passcodes.html
revdate: April 14, 2025
section_ids:
  passcode-storage: Passcode storage
  passcode-duration: Passcode duration
---

# Overview of one-time passcodes

The One-Time Passcode Integration Kit generates passcodes that the user must enter to complete the authentication flow.

## Passcode storage

PingFederate does not store one-time passcodes (OTPs) at any time. Instead, passcodes are generated based on several components that are stored in memory, including a nonce value, a transaction ID, and a secret value associated with the adapter instance.

## Passcode duration

Passcodes are associated with a particular PingFederate session. Although the passcodes themselves do not expire, they can only be used once and only for the associated session and authentication flow. When the authentication flow ends, the passcode is no longer valid.