7

Security

Last Update 2 months ago

How to create a CSR (Certificate Signing Request) How to enable MFA/2FA in the Client Area How to enable 2FA for CloudPanel How to enable 2FA for cPanel How to manage your site's "HTACCESS" file

How to enable MFA/2FA in the Client Area

Secure your WP Hosting Client Area with MFA/2FA

George

Last Update 2 months ago

This topic covers processes requiring access to your WP Hosting Client Area. If you’re not sure how to access the Client Area, please follow this guide before continuing - How do I Login to my WP Hosting Client Area?

Multi-Factor or Two-Factor Authentication (MFA/2FA) adds an extra layer of security to your WP Hosting and other online accounts. 


By requiring a second form of verification, it helps keep your information safe even if your password is stolen. Setting up MFA/2FA is an easy and effective way to protect yourself online. 


Follow this guide to enhance your security in just a few steps!

1. First, login to your WP Hosting Client Area


2. Once logged into the Client Area, click the profile name in the top-right and select 'Security Settings' from the drop-down menu

3. Next, click the 'Two-Factor Authentication' tab. This will display the current status. 

Press 'Click here to enable' to begin the 2FA / MFA setup

4. You can choose from token or email based 2FA methods.


  • Email based 2FA  sends one-time codes via email 

5. Make your choice between Time Based Tokens or Email Two-Factor Authentication and then click 'Get Started'

If choosing Time Based Tokens
If choosing Time Based Tokens, you will see a QR code with a screen asking you to connect your app. 


Download and open your preferred authenticator app on your smartphone. The steps will vary slightly between apps but the gernaerl steps are;

  • Open the authenticator app
  • Scan the WP Hosting QR code
  • Enter the code from the app and click 'submit'

When 2FA is activated, you will see a message confirming "Two-Factor Authentication is now enabled" and a Backup Code will be displayed. 

IMPORTANT NOTE: Make a note of your backup code and treat it as you would any other password. This backup code can be used to login if you lose access to your phone or the authenticator app, so keep it safe.

!!! IMPORTANT NOTE !!!

  • Remember to make a note of your backup code and treat it as you would any other password. This backup code can be used to login if you lose access to your phone or the authenticator app, so keep it safe.

If choosing Email 2FA

If choosing Email Two-Factor Authentication, an email will be sent to the primary account email address within a few minutes. Please ensure you know the email address associated with your WP Hosting account and that you have access to any mail sent there.

This email will contain an authentication code - enter the code and click 'Activate

PLEASE NOTE: The email 2FA codes are valid for 1 hour only.

This completes the email-based token 2FA setup

Still need help? Message Us