BuycPanel Blog

BuycPanel Blog

Latest news and updates

What is a Two-factor authentication (2FA)?

Posted by Allura on 04 04 2019.

A Brief Introduction
The term Two-factor authentication (2FA) can be defined as an improved security measure which requires two forms of identification: 1) your password, and 2) a security code which is generated. When 2FA is enabled, an application on your smartphone supplies a code that you must enter with your password to log in, which becomes impossible if you are without your smartphone.

Note:

It is important to remember that Two-factor authentication requires a smartphone with a supported time-based one-time password (TOTP) app. The following apps are suggested:

 	If you are using Android™, iOS®, and Blackberry® — Google Authenticator™
 	If you are using Android and iOS — Duo Mobile
 	If you are using Windows® Phone — Authenticator

 

If you want to use this feature, your system administrators have to enable it for you. You can ask them to perform the following steps in WHM:

 	First, you can set the Two-Factor Authentication Security Policy toggle button to the On mode in WHM’s Two-Factor Authentication interface (WHM >> Home >> Security…

A Brief Introduction

The term Two-factor authentication (2FA) can be defined as an improved security measure which requires two forms of identification: 1) your password, and 2) a security code which is generated. When 2FA is enabled, an application on your smartphone supplies a code that you must enter with your password to log in, which becomes impossible if you are without your smartphone.

Note:

It is important to remember that Two-factor authentication requires a smartphone with a supported time-based one-time password (TOTP) app. The following apps are suggested:

  • If you are using Android™, iOS®, and Blackberry® — Google Authenticator™
  • If you are using Android and iOS — Duo Mobile
  • If you are using Windows® Phone — Authenticator

 

If you want to use this feature, your system administrators have to enable it for you. You can ask them to perform the following steps in WHM:

  1. First, you can set the Two-Factor Authentication Security Policy toggle button to the On mode in WHM’s Two-Factor Authentication interface (WHM >> Home >> Security >> Two-Factor Authentication).
  2. Then you can grant the Two-Factor Authentication (Google Authenticator) feature to the users you want in WHM’s Feature Manager interface (WHM >> Home >>  Packages >> Feature Manager).

 

Configure two-factor authentication

If you want to configure two-factor authentication, you have to perform the following steps:

  1. First, you have to click on Set Up Two-Factor Authentication.
  2. Then, if you want to configure two-factor authentication, you have to link your cPanel account and your 2FA app:
  • If you want to automatically create the link, you can scan the displayed QR code with your app.
  • Or, if you want to manually create the link, you can enter the provided Accountand Key information in your app.
  1. Lastly, you can open your 2FA app to fetch the six-digit security code.

Note:

It is important to remember that the 2FA app generates a new six-digit security code for your cPanel account every 30 seconds.

  1. You can now enter the six-digit security code in the Security Code text box.

Note:

It is important to remember that you must enter the security code within 30 seconds. If you fail to do so and the time expires then the app will generate a new six-digit code.

  1. You can then click on Configure Two-Factor Authentication.

Note:

If you happen to see a ‘Failed to set user configuration: The security code is invalid’ error, then you have to understand that a problem may exist with the date and time settings on your server. The way to fix the issue is to contact your hosting provider or system administrator.

 

Remove two-factor authentication

If you want to remove the two-factor authentication, you can simply click on Remove Two-Factor Authentication.

Reconfigure two-factor authentication

If you want to reconfigure the two-factor authentication, you have to click on Reconfigure. After that follow the steps to configure two-factor authentication.

Warning:

It is important to remember that if you choose to reconfigure 2FA for your account then any existing configurations will not be able to produce valid security codes.

Concluding thoughts

This review details upon the concept of Two- factor authentication (2FA) and also the process to implement it.