In this article we will show you how to set up two-factor authentication for cPanel.
Note
To use two-factor authentication in cPanel, your hosting provider or server administrator must first activate and configure it in WHM
What is Two-Factor Authentication?
2FA It is an improved security measure for the login interface. It requires two forms of identification:
- Your password.
- A security code. An application on your smartphone generates a code that you must enter to log in. Without this security code, you cannot log in.
2FA works, because the authenticator app and cPanel & WHM share a secret key. cPanel creates the key. Which is added to the app via a QR code, or entered as a string of digits. With some complicated math, cPanel and the app can then simultaneously generate the same one-time code. When you log in, the codes are compared. And if they match, you’re authenticated.
Note
The smartphone app must be able to generate time-based one-time passwords (TOTP).
cPanel recommends the following smartphone apps:
- Google Authenticator : For Android, iOS, and Blackberry.
- Duo Mobile : For Android and iOS.
- Authenticator : For Windows Phone.
How To Set up 2FA For cPanel?
- Firstly, login to cPanel.
- Locate Security in the cPanel home screen, Then click Two-Factor Authentication.
- After that, Click Set Up Two-Factor Authentication.
- Under Step 1, use your preferred two-factor authentication application (for example, DuoMobile) to scan the QR code. If you do not have a QR code reader, you can manually configure two-factor authentication within your app by entering the information provided under Don’t have a QR code reader?.
- Under Step 2, in the Security Code text box, type the security code you see in the 2FA app.
Warning
You must type the security code within 30 seconds. After time expires, the app generates a new six-digit code.
- Click Configure Two-Factor Authentication. cPanel enables 2FA for your account.
How To Remove 2FA For cPanel?
- Log in to cPanel.
- Locate Security in the cPanel home screen, Then click Two-Factor Authentication.
- Click Remove Two-Factor Authentication, and then click Remove to confirm. cPanel disables 2FA for your account.