In this tutorial, we are going to learn how to configure two-factor authentication in WHM to ensure additional security, which enables you to login securely with a one time security code along with a password

Authenticator application on your smartphone or PC generates this security code for every 30sec (TOTP). More instresting is the setup process, so lets jump into the prosess

Enabling 2FA

To enable 2FA, follow these steps

Log in to WHM.

WHM login

look for Two-Factor Authentication in security center ( WHM ) and click on it to setup 2FA login.

Two-Factor Authentication

Make sure to enable 2FA and click Set Up Two-Factor Authentication:

Set Up Two Factor Authentication

Once you click on set up two-factor authentication, you should be able to see an extended page to set up 2FA in a step-by-step manner.

Step 1, use your preferred two-factor authentication application ( for example, Google Authenticator ) to scan the QR code. If you do not have a QR code reader, you can manually configure two-factor authentication within your app by entering the information provided under Don’t have a QR code reader? in 2FA app.

Step 2, in the Security Code text box, type the security code you see in the 2FA app.

Note: You must type the security code within 30 seconds. After time expires, the app generates a new six-digit code.

Step 6: Click Configure Two-Factor Authentication to enables 2FA for your account.


Step 7: Once configured 2FA status should change to configured and 2FA step up is now complete.

Note: From now on we should provide the time-based one-time password ( TOTP ) for every login.

Status : Configured

Reconfiguring 2FA

Follow these steps:

In the security center of the cPanel, click Two-Factor Authentication:

Two-Factor Authentication

Now click Remove Two-Factor Authentication, and then click Remove to confirm. cPanel disables 2FA for your account and you are ready to set up fresh 2FA.


Now that we know how to configure two-factor authentication in WHM and done with setting it up, you should always type security code while login, soon after you enter password.

Note: Security code changes every 30sec in the authenticator app and if you don’t have a security code you might have a problem while login, so make sure you have a security code ( TOTP ) every time you login.