This function allows you to configure two-factor authentication (2FA), a security measure for the login interface of cPanel & WHM.
Two-factor authentication requires two forms of identification. After you enter your password, you must enter a security code.
An application on your smartphone supplies this code. Without your smartphone, you cannot log in.
2FA requires a smartphone with a supported time-based one-time password (TOTP) app. We suggest the following apps for Android™ and iOS®:
Enable 2FA
If 2FA is disabled on the server, set the toggle to On to enable 2FA.
Settings
The Settings tab allows you to configure the 2FA Issuer setting. The Issuer setting determines the name that appears in many authentication apps.
To set the Issuer setting for 2FA, perform the following steps:
- Click the Settings tab.
- Enter the desired value for the Issuer setting, or retain the default value.
Note:
- If you do not enter a name for the Issuer setting, it defaults to the hostname.
- Some authentication apps may display the hostname or Account value instead of the Issuer value.
Click Save.
Manage Users
The Manage Users tab displays the accounts for which you have configured 2FA. It also allows you to disable 2FA on those accounts.
Remove 2FA on a user account
To remove 2FA for a single user account on the Manage Users list, click Disable to the right of the user account.
To remove multiple user accounts from the Manage Users list, perform the following steps:
- Select the Manage Users tab.
- Select the checkboxes to the left of each user account that you want to remove. To select all accounts, select the checkbox to the left of the User heading.
- Click the gear icon on the top right of the list, and then select Disable Selected.
Select Disable All to remove every user account from the Manage Users list. This will not disable 2FA on your own account.
Manage My Account
The Manage My Account tab allows you to set up 2FA for the root account or a reseller account.