Skip to main content
Step-up verification is an additional identity check that Odin requires before you can perform sensitive actions. Even though you’re already signed in, you’ll be asked to confirm your identity again to protect against session hijacking and unauthorised changes.

How it works

When you trigger a protected action, a verification dialog appears. You can confirm your identity using either method:
  • Passkey — if you have a passkey registered, this is the default. Tap your fingerprint sensor, use Face ID, or insert your security key.
  • Email OTP — a 6-digit code is sent to your email address. Enter it within 5 minutes.
Once verified, the action proceeds immediately. Each verification is single-use — you’ll need to verify again for the next protected action.
Registering a passkey makes step-up verification faster. Instead of waiting for an email code, you can verify with a single biometric prompt.

What requires step-up verification

ActionLocation
Updating your nameProfile
Removing a passkeyProfile
Changing organisation settingsOrganisation Settings
Inviting a team memberTeam Management
Changing a member’s roleTeam Management
Removing a team memberTeam Management

OTP verification

1

Dialog appears

When you trigger a protected action, the verification dialog opens and an OTP code is sent to your email automatically.
2

Enter the code

Type the 6-digit code from your email. Verification happens automatically once all digits are entered.
3

Action completes

The protected action proceeds as normal.
If the code doesn’t arrive, click Resend code after the 60-second cooldown. Codes expire after 5 minutes.

Passkey verification

If you have a passkey registered, the dialog defaults to passkey verification. Follow your device’s biometric or security key prompt to confirm your identity. You can switch between passkey and OTP verification at any time using the link at the bottom of the dialog.