Each time the system generates a temporary one time random password the system will associate a configurable validity period along with it. Hence, if the user does not use and change this password within this validity period, then the password will expire, the user will be denied login, and he/she will need to contact their bank to reset the password and have the system generate a new temporary one time random password for him/her.