Plesk two-factor authentication guide | 1-grid

Boost your Plesk account security with two-factor authentication (2FA). Read on for our complete guide to setting it up.

 

Trying to set up 2FA for cPanel instead of Plesk? This knowledge base article should sort you out.

Plesk allows you to add an extra layer of security to your account by using your mobile device and the Google Authenticator 2FA app.  

  1. Android: Google Authenticator or Authy
  2. iOS: Google Authenticator or Authy
  3. Windows Mobile: Authenticator+ (No native Google Authenticator exists for this platform; this third-party app claims to be compatible.) 

  

How to enable 2FA 

In order to enable 2FA, follow the following steps: 

  1. Log in to Plesk.
  2. If you do not know how to log in to your Plesk hosting account, please see this Knowledge Base Article.
  3. Under the “Websites & Domains” section, find and click on the “Google Authenticator” link in the right-hand sidebar:
  4. Tick the box labelled Enable Multi-factor Authentication to show the rest of the options as seen below:

     
  5. Use your Google Authenticator app to scan the QR code. If you do not have a QR code reader, you can also manually configure two-factor authentication in your authenticator app by entering the information shown underneath the QR code when you click the link labelled “Could not scan the barcode?
     
  6. Next, type the security code given in the 2FA app into the text field Verification Code.
     
  7. It is optional but recommended to tick the boxes Enable Remember Device functionality and Pre-select Remember Device.
  8. You need to type the security code within 30 seconds. After this time expires, the app automatically generates a new six-digit code.
  9. Click OK to configure two-factor authentication. Plesk will now enable 2FA for your account. 

 

Reconfiguring 2FA 

To reconfigure 2FA, follow the following steps: 

  1. Log in to Plesk.
     
  2. If you do not know how to log in to your Plesk hosting account, please see this Knowledge Base article.
     
  3. Follow the same steps as you did to enable 2FA above:

  4. NOTE: When you reconfigure 2FA for your Plesk account, no app using the prior configuration will generate valid security codes. You have to update each of your configured authenticator apps with the new QR code. 

 

Removing 2FA 

In case you need to remove 2FA, follow these steps: 

  1. Log in to Plesk.
     
  2. If you do not know how to log in to your Plesk hosting account, please see this Knowledge Base article.
     
  3. Under the Websites & Domains section, find and click on the Google Authenticator link in the right-hand sidebar:


  4. Untick the box labelled Enable Multi-factor Authentication and click OK to disable 2FA for this account.
  5. Two-factor authentication should now once more be disabled for your account.

Was this post helpful?