Two-Factor Authentication configuration

MindServer

Well-Known Member
Mar 18, 2020
236
32
28
Spain
cPanel Access Level
Root Administrator
Hi,

You recommend me enable "Two-Factor Authentication" tool in WHM/cPanel or can generate access problems?.

If I enable him, in "Issuer" I need put a different hostname in each server or I need put the same info in all servers? (because I have various servers). I attached an image.

Thank you very much. Have a nice day!
 

Attachments

andrew.n

Well-Known Member
Jun 9, 2020
918
342
63
EU
cPanel Access Level
Root Administrator
The Issuer setting determines the name that appears in the authentication app when a user accesses the security code. If you do not enter a name for the Issuer setting, it defaults to the hostname.
 
  • Like
Reactions: MindServer

MindServer

Well-Known Member
Mar 18, 2020
236
32
28
Spain
cPanel Access Level
Root Administrator
The Issuer setting determines the name that appears in the authentication app when a user accesses the security code. If you do not enter a name for the Issuer setting, it defaults to the hostname.
-If I wirte "Issuer = My Bussiness Name" in all servers when configure "Two-Factor Authentication" will work correctly?.

-Other thing: if client enable Two-Factor Authentication in her cPanel account, the admins will can access since WHMCS buttons?.

Thank you very much.
 

andrew.n

Well-Known Member
Jun 9, 2020
918
342
63
EU
cPanel Access Level
Root Administrator
I would write something unique in the Issuer field because you will be confused to which server the code belongs. If you enable 2FA I think yes, your clients from WHMCS can still access the accounts but I'm not 100% sure in that...maybe @cPanelLauren can confirm this?
 
  • Like
Reactions: MindServer

MindServer

Well-Known Member
Mar 18, 2020
236
32
28
Spain
cPanel Access Level
Root Administrator
I would write something unique in the Issuer field because you will be confused to which server the code belongs. If you enable 2FA I think yes, your clients from WHMCS can still access the accounts but I'm not 100% sure in that...maybe @cPanelLauren can confirm this?
Thank you friend. I contacted to WHMCS support and they told me need disable Two-factor for cPanel API: CPanel/WHM - WHMCS Documentation

With this should be work correctly, I will do tests.

Have a nice day.
 
  • Like
Reactions: andrew.n

cPanelLauren

Product Owner II
Staff member
Nov 14, 2017
13,274
1,291
313
Houston

sparek-3

Well-Known Member
Aug 10, 2002
2,114
254
388
cPanel Access Level
Root Administrator
I know I'm digging up an old thread, but this thread seems relevant to my question.

Regarding the Issuer and multiple servers - how does that relate if the account is moved to another server?

For example, say I have two servers named homer and bart. I use these respective names as the Issuer on each server - homer for homer and bart for bart. An account on homer sets up 2FA and all works fine. 2 months later I move this account from homer to bart - will the 2FA work without any incidents? Or because the Issuer is different (it was set up on homer with the homer Issuer and now resides on bart where bart is the Issuer) will this cause issues with 2FA?

Or would I better off setting the Issuer for both servers to simpsons so that when an account on homer sets up 2FA and later gets moved to bart then there's no Issuer issue?
 

cPRex

Jurassic Moderator
Staff member
Oct 19, 2014
11,743
1,868
363
cPanel Access Level
Root Administrator
From our docs at Two-Factor Authentication for WHM | cPanel & WHM Documentation

"The Issuer setting determines the name that appears in the authentication app."

It won't have any affect on how the authentication process works, just what shows up to the end-user. If you want to avoid possible confusion, it would be best to make that something generic.