• Portal Home
  • Knowledgebase
  • Payments & Account Management
  • Client Area Management
  • How to activate and use Two-Factor Authentication

How to activate and use Two-Factor Authentication

Two Factor authentication (2FA) helps further protect your WHC account and services by adding a second layer of security when logging in.

With 2FA enabled you’ll be prompted to provide a security code generated from a separate device, like a smartphone, after you’ve already logged in with your password. Even if your account password is stolen or compromised, a malicious user won’t be able to access your account without having access to your phone.

At WHC, 2FA is available to protect your Client Area as well as your web hosting account(s).

2FA Applies to the following Web Hosting Canada systems & services:

  1. Your WHC Client Area
  2. Your Web Hosting’s cPanel
  3. Your Cloud or Dedicated Server’s WHM

To get started, choose what you would like to accomplish:

Enable Two Factor Authentication (2FA) on the WHC Client Area
Enable Two Factor Authentication (2FA) on Web Hosting (cPanel)
Enable Two Factor Authentication (2FA) on Dedicated/Cloud servers (WHM)

2FA requires a separate authentication app, which will generate a unique code each time you log in. We recommend Google Authenticator, but other options include: Microsoft Authenticator, Duo, or the Google Authenticator plugin for Chrome.


Enable Two Factor Authentication (2FA) on the WHC Client Area

Securing your Web Hosting Canada Client Area account with 2-factor authentication adds a second layer of protection to help prevent unauthorized access.

To enable 2FA in your Client Area:

  1. Log in to the WHC Client Area
  2. Click on your profile icon in the top right corner, then click Your Profile
  3. Scroll down to the Security section
  4. Under Two-Factor Authentication, click the toggle switch to the 'on' position
  5. Click Get Started
  6. Open Google Authenticator (or your preferred 2FA App) and click + to add a new login
  7. Scan the QR code shown in your Client Area
  8. Enter your code from Google Authenticator into the box on the Two-Factor Authentication page and click Verify Code
  9. A backup code will be displayed on your screen. This code can be used to log in your account if, for whatever reason, you are unable to log in using 2FA. We recommend saving this backup code in a password manager.

To enable 2FA in your Client Area (If using the old Client Area):

  1. Log in to the WHC Client Area
  2. Click on My Profile on the right side of the menu.
  3. Click Security Settings
  4. Under Two-Factor Authentication, click click here to enable
  5. Click Get Started
  6. Open Google Authenticator (or your preferred 2FA App) and click + to add a new login
  7. Scan the QR code shown in your Client Area
  8. Enter your code from Google Authenticator into the box on the Two-Factor Authentication page and click Verify Code
  9. A backup code will be displayed on your screen. This code can be used to log in your account if, for whatever reason, you are unable to log in using 2FA. We recommend saving this backup code in a password manager.

Congratulations! You have now enabled two 2FA and have further secured your WHC account. You will be prompted to provide your 2FA code every time you log in.

If you lose the device or accidentally uninstall the Authenticator app and do not have your backup code, you’ll be unable to log in to your account. You’ll need to Contact our support team so that we can verify your identify and disable 2-factor authentication for you.

If you wish to disable 2FA, you can return to the 2FA screen and choose to disable 2FA.

Your 2FA setup will not apply to any sub-accounts you have created in your Client Area.

Return to Top of Page


Securing Your cPanel Account with 2FA

Enabling Two-Factor Authentication (2FA) in your cPanel account will increase its security and further prevent unauthorized logins. After logging in with your cPanel username and password (or by using the cPanel shortcut from your Client Area) 2FA will prompt you to enter the security code generated by your 2FA App.

Here’s how to enable 2FA on cPanel:

  1. Log in to cPanel
  2. In the Security section, click Two-Factor Authentication
  3. Click Set Up Two Factor Authentication
  4. Scan the QR code, or enter the secret code, with your 2FA app. We recommend Google Authenticator, which you can download and install here.
  5. Scroll down to step 2 on the cPanel two-factor authentication page. Enter the code (without spaces) into the field Security Code.
  6. Click Configure Two-Factor Authentication

You have now enabled two-factor authentication for your cPanel account! If you ever wish to disable it, click Remove Two Factor Authentication from this same section of your cPanel. Return to Top of Page


Securing Your WHM access with 2FA

Enabling two factor authentication (2FA) on your server increases security for both you (the root user) and any other users that may have accounts on the server.

When you log in to the server as root user with your password an additional code from your 2FA app will be required to complete your login.

  1. Let’s first enable 2FA for the server. Log in to WHM with the root user.
  2. Click on Two-Factor Authentication in the menu
  3. You can enter any descriptive name you want in the Issuer section, and then click the OFF toggle to turn on 2FA for your server.
  4. Now let’s set up 2FA for the root user. Click the Manage My Account tab.
  5. Click Set Up Two-Factor Authentication to start configuring 2FA for the root user.
  6. Scan the QR code, or enter the secret code, with your 2FA app. We recommend Google Authenticator, which you can download and install here.
  7. Scroll down to step 2 on the cPanel two-factor authentication page. Enter the code (without spaces) into the field Security Code.
  8. Click Configure Two-Factor Authentication

Congratulations, 2FA is now enabled! From now on when you log in to WHM, you’ll also be prompted to enter your second-level code.

If needed, you can disable 2FA from the same WHM screen where you’ve enabled it. If you don’t have access to WHM but have command-line (SSH) access to your server, you’ll be able to disable 2FA by running the following command as root: whmapi1 twofactorauth_disable_policy Return to Top of Page

Was this answer helpful?