Two-factor authentication (2FA) is a security measure that requires two forms of identification. After you enter your password, you must enter a security code. An application on your smartphone supplies this code. Without your smartphone, you cannot log in.
Important
To use this feature, your hosting provider must enable 2FA in WHM’s Two-Factor Authentication interface (WHM » Home » Security Center » Two-Factor Authentication).
2FA supports only one concurrent session for any user. If you open several browser windows to cPanel and log out in one of them, the server will log out the other windows.
To automatically create the link, scan the displayed QR code with your app.
To manually create the link, enter the provided Account and Key information in your app.
.3Within your 2FA app, retrieve the six-digit security code
NoteThe 2FA app generates a new six-digit security code every 30 seconds.
.4Enter the six-digit security code in the Security Code text box.
NoteYou must enter the security code within 30 seconds. After time expires, the app will generate a new six-digit code.
.5Click Configure Two-Factor Authentication.
NoteIf you see a Failed to set user configuration: The security code is invalid. error, a problem may exist with the date and time settings on your server. To fix the issue, contact your hosting provider.
Remove 2FA
To remove 2FA, click Remove Two-Factor Authentication.
Reconfigure 2FA
To reconfigure 2FA, click Reconfigure. Follow the steps above to configure two-factor authentication.
Warning
This action will overwrite your account’s existing 2FA configuration. As a result, any existing 2FA app configurations will not provide valid security codes.
Lost access to 2FA
If you lose access to your existing 2FA application and are unable to log in, contact your system administrator to disable your account’s 2FA access. This will allow you to configure 2FA again.