A cryptographic token issued by your registrar that proves you control a domain and want to move it elsewhere. Think of it as a password for domain transfers—without it, you're stuck.
When you request an authcode, your registrar generates a unique string (usually 16–32 characters, alphanumeric and symbols). You give this to the new registrar; they use it to initiate an EPP transfer. The losing registrar validates the code; if it matches, the domain moves. If it doesn't, the transfer fails. Codes typically expire after 30–60 days and can be revoked by the registrant or admin contact at any time.
Why it matters: This is your escape hatch. A registrar that makes authcodes hard to obtain, delays them, or revokes them without cause is locking you in—even without explicit transfer locks. We issue authcodes on request, no drama. Some registrars bury the process in their control panel or require phone calls. Don't accept that. You own the domain; you own the code.