If you are looking to further secure your cPanel hosting, Two-Factor Authentication can be enabled within cPanel. This means that when logging in to cPanel, once you have entered your username and password you will be prompted to enter a secondary authentication code – which will be generated from an authenticator on your mobile.
If you do not already have an authenticator app for your mobile device, cPanel currently suggests installing one of the below:
- For Android™, iOS®, and Blackberry® — Google Authenticator™
- For Android and iOS — Duo Mobile
- For Windows® Phone — Authenticator
Enabling Two-Factor Authentication:
Firstly, log into your cPanel account. If you are unsure on how to do this, please view the following help article – ‘How to log into cPanel‘, Then once logged in – under the Security heading, click on Two-Factor Authentication.
On the Two-Factor Authentication page, when you are ready to proceed with set up click on the “Set Up Two-Factor Authentication” button
You will then be shown two steps. For Step 1 you will need to scan the QR code on your authenticator app, which will appear where the red box is marked in the below image.
Note: The QR code for this example has been removed for security reasons.
If for any reason you are having issues with scanning the QR code, please use the details below the QR code from the Don’t have a QR code reader? section, to manually add this to your authenticator app.
Note: in the example shown, the Key is blurred out for security reasons.
Once you have added this to your authenticator app, scroll down the page on cPanel to Step 2.
In the Security Code box, please enter the 6 digit code that your authenticator app is displaying
Then click on the Configure Two-Factor Authentication button to complete set up.
You should then see the below message to confirm that Two-Factor Authentication is now enabled
Now that this is set up, you can test by logging out of cPanel, then log in again. Once you enter your password it cPanel will then prompt you to enter a randomly generated 6 digit code from your authenticator app.