It is possible to enable two-factor authentication (2FA) for DirectAdmin. This adds an extra layer of security by requiring a second verification step to log in to your hosting account.
In DirectAdmin, after entering your password, you will need to enter a verification code generated by an authentication app such as Google Authenticator. This significantly improves security and is therefore highly recommended.
Before proceeding with the steps, ensure that you have a 2FA app (such as Google Authenticator) installed on your phone.
Enable two-factor authentication (2FA)
Enabling two-factor authentication (2FA) for DirectAdmin can be done as follows:
1. Log in to DirectAdmin.
2. In the menu, go to 'Advanced Features' → 'Two-Step Authentication'.
3. Click 'Generate Secret' in the 'Two-Step Authentication' tab.
4. A QR code will appear. Scan it using an authentication app such as Google Authenticator (Android / iOS) on your phone or manually enter the key.
5. Enter the 6-digit code generated by your 2FA app, then click 'Enable Two-Step Authentication'.
6. DirectAdmin will confirm that two-factor authentication is successfully enabled for your account.
After enabling 2FA, DirectAdmin will display a set of recovery codes. These are one-time-use backup codes that allow you to log in if you lose access to your 2FA app or phone. It is very important to save these codes in a secure location. For example, in a password manager or printed and stored safely offline. If you lose both your 2FA app and recovery codes, you will need to contact us to regain access to your account.
Testing two-factor authentication (2FA)
1. Log out of DirectAdmin.
2. Then log back in to verify that two-factor authentication is working correctly.
3. After entering your username and password, you will be prompted to enter a 6-digit verification code generated by your authentication app.
4. Open your 2FA app and enter the code that appears for your DirectAdmin account. If the code is correct, you will be logged in successfully, confirming that two-factor authentication has been set up properly.
Disable two-factor authentication (2FA)
Disabling two-factor authentication (2FA) is done in the same location where it was originally enabled. To turn it off, follow these steps:
1. Log in to DirectAdmin.
2. In the menu, go to 'Advanced Features' → 'Two-Step Authentication'.
3. Click the red button labeled 'Disable' to disable 2FA.