What is 2-factor authentication?
Two-factor authentication (2FA) adds a second layer of security to your cPanel login. In addition to your password, you will need a 6-digit code that changes every 30 seconds, generated on your phone. Without the phone, no one can log in even if they have your password.
Requirements
- Phone with the Google Authenticator app (iOS or Android)
- Or any compatible TOTP app: Authy, Microsoft Authenticator
Activate 2FA in cPanel
- Log in to cPanel
- Find the "Security" section
- Click on "Two-Factor Authentication"
- Click on "Set Up Two-Factor Authentication"
- A QR code will be displayed on the screen
- Open Google Authenticator on your phone
- Tap the "+" button → "Scan a QR code"
- Point the camera at the QR code on the screen
- The app will generate a 6-digit code
- Enter that code in the cPanel verification field
- Click on "Set Up Two-Factor Authentication"
✅ 2FA activated. Now every time you log in to cPanel, after your password, you will be asked for the 6-digit code from the app.
⚠️ Important: Save the backup code that cPanel shows you in a safe place. If you lose your phone and don't have the backup code, you will need to contact support to disable 2FA.