diff --git a/__tests__/api/pair-start.test.ts b/__tests__/api/pair-start.test.ts
index c29281a..8c7207f 100644
--- a/__tests__/api/pair-start.test.ts
+++ b/__tests__/api/pair-start.test.ts
@@ -62,10 +62,10 @@ describe('POST /api/auth/pair/start', () => {
     expect(arg.desktop_token_hash).toMatch(/^[a-f0-9]{64}$/)
     expect(arg.secret_hash).not.toBe(body.mobileSecret)
     expect(arg.status).toBe('pending')
-    // expires_at ~120s in toekomst
+    // expires_at ~5 min in toekomst
     const dt = new Date(arg.expires_at).getTime() - Date.now()
-    expect(dt).toBeGreaterThan(115_000)
-    expect(dt).toBeLessThan(125_000)
+    expect(dt).toBeGreaterThan(295_000)
+    expect(dt).toBeLessThan(305_000)
   })
 
   it('zet HttpOnly Path-scoped s4m_pair cookie met Max-Age 120', async () => {
@@ -78,7 +78,7 @@ describe('POST /api/auth/pair/start', () => {
       httpOnly: true,
       sameSite: 'lax',
       path: '/api/auth/pair',
-      maxAge: 120,
+      maxAge: 300,
     })
   })
 
diff --git a/app/(app)/m/pair/pair-confirmation.tsx b/app/(app)/m/pair/pair-confirmation.tsx
index fc5c42e..9d92b0d 100644
--- a/app/(app)/m/pair/pair-confirmation.tsx
+++ b/app/(app)/m/pair/pair-confirmation.tsx
@@ -110,18 +110,18 @@ export function PairConfirmation() {
 
   if (state.kind === 'invalid') {
     return (
-      <div className="bg-destructive/10 text-destructive-foreground mt-6 rounded-md p-4">
+      <div className="bg-error-container text-error-container-foreground border-error mt-6 rounded-md border-l-4 p-4">
         <p className="font-medium">Kan deze QR-code niet gebruiken</p>
-        <p className="text-sm">{state.error}</p>
+        <p className="text-sm opacity-90">{state.error}</p>
       </div>
     )
   }
 
   if (state.kind === 'approved') {
     return (
-      <div className="bg-primary/10 mt-6 rounded-md p-4">
+      <div className="bg-success-container text-success-container-foreground border-success mt-6 rounded-md border-l-4 p-4">
         <p className="font-medium">Klaar — je kunt deze tab sluiten.</p>
-        <p className="text-muted-foreground text-sm">
+        <p className="text-sm opacity-90">
           Het apparaat met de QR-code is nu ingelogd als <strong>{state.username}</strong>.
         </p>
       </div>
@@ -130,9 +130,11 @@ export function PairConfirmation() {
 
   if (state.kind === 'cancelled') {
     return (
-      <div className="bg-muted text-muted-foreground mt-6 rounded-md p-4">
+      <div className="bg-surface-container-high text-foreground mt-6 rounded-md p-4">
         <p className="font-medium">Geannuleerd</p>
-        <p className="text-sm">Er is geen sessie aangemaakt op het andere apparaat.</p>
+        <p className="text-muted-foreground text-sm">
+          Er is geen sessie aangemaakt op het andere apparaat.
+        </p>
       </div>
     )
   }
diff --git a/app/api/auth/pair/start/route.ts b/app/api/auth/pair/start/route.ts
index 409714d..2062887 100644
--- a/app/api/auth/pair/start/route.ts
+++ b/app/api/auth/pair/start/route.ts
@@ -20,7 +20,7 @@ import { checkRateLimit } from '@/lib/rate-limit'
 
 export const runtime = 'nodejs'
 
-const PENDING_TTL_MS = 2 * 60 * 1000 // 2 min — komt overeen met s4m_pair Max-Age
+const PENDING_TTL_MS = 5 * 60 * 1000 // 5 min — komt overeen met s4m_pair Max-Age
 
 const UA_MAX = 255 // matcht VarChar(255) op login_pairings.desktop_ua
 const IP_MAX = 45 // matcht VarChar(45) — IPv6 max length
diff --git a/lib/auth/pair-cookie.ts b/lib/auth/pair-cookie.ts
index a782f51..e977ee7 100644
--- a/lib/auth/pair-cookie.ts
+++ b/lib/auth/pair-cookie.ts
@@ -8,7 +8,7 @@
 import { cookies } from 'next/headers'
 
 const COOKIE_NAME = 's4m_pair'
-const MAX_AGE_SECONDS = 120 // gelijk aan pending-TTL van LoginPairing
+const MAX_AGE_SECONDS = 300 // gelijk aan pending-TTL van LoginPairing (5 min)
 const COOKIE_PATH = '/api/auth/pair'
 
 export async function setPairCookie(desktopToken: string): Promise<void> {