Kualo / docs
On this page

How to set up Two-Factor Authentication in cPanel

Add a second layer of security to your cPanel login with Two-Factor Authentication, using a free authenticator app on your phone.

1 min read Updated 11 Jun 2026

Two-Factor Authentication (2FA) adds a second layer of security to your cPanel login. As well as your password, you enter a short code from an app on your phone that changes every 30 seconds - so even if someone learns your password, they cannot get in without your phone.

Before you start

Install an authenticator app on your phone if you don't already have one. Any of these work well:

  • Google Authenticator
  • Microsoft Authenticator
  • Authy

Turn on Two-Factor Authentication

  1. Log in to cPanel and, in the Security section, click Two-Factor Authentication.

    The Two-Factor Authentication screen in cPanel

  2. Click Set Up Two-Factor Authentication. cPanel shows a QR code and an account (secret) key.

    Scanning the QR code to set up Two-Factor Authentication in cPanel

  3. Open your authenticator app and either scan the QR code or enter the account key by hand. The app adds an entry for your cPanel account and starts generating six-digit codes.

  4. Back in cPanel, type the current six-digit code from your app into the Security Code field and click Configure Two-Factor Authentication.

That's it - the next time you log in to cPanel, you will be asked for a code from your app after your password.

Keep your authenticator app, and the device it is on, safe. If you lose access to it you will not be able to log in - contact our support team, who can help you regain access to your account.

Was this helpful?
Your feedback helps us find gaps in the docs.
Related articles
Security
How to set up Leech Protection in cPanel
Leech Protection in cPanel watches password-protected directories and steps in when a user...
Still need a hand?
Real people, around the clock - start a chat or open a ticket and we'll help you put it right.
Contact us Start a chat