Two-Factor Authentication (2FA) adds an extra security layer to your DirectAdmin account. Besides your password, you also need a code from your phone to log in. This makes it virtually impossible for hackers to gain access, even if they know your password.

Why use 2FA?

Your DirectAdmin account contains sensitive data:

  • Email accounts: Access to all your email
  • Databases: Your website data
  • Files: All your website files
  • FTP credentials: Upload permissions

If someone gains access to your DirectAdmin, they can:

  • Modify or delete your website
  • Send spam through your email
  • Install malware
  • Steal your data

2FA prevents this, even with a leaked password.

What do you need?

  • A smartphone (Android or iPhone)
  • An authenticator app:
    • Google Authenticator (recommended)
    • Microsoft Authenticator
    • Authy
    • 1Password (if you already use it)

Setting up 2FA in DirectAdmin

Step 1: Download an authenticator app

Download one of the following apps on your phone:

Android:

  • Open the Google Play Store
  • Search for "Google Authenticator"
  • Install the app by Google LLC

iPhone:

  • Open the App Store
  • Search for "Google Authenticator"
  • Install the app

Step 2: Go to security settings

  1. Log in to DirectAdmin
  2. Click your username in the top right
  3. Select "Two-Step Authentication or "Security
  4. Or go directly to: Account Manager → Two-Step Authentication

Step 3: Activate 2FA

  1. Click "Enable Two-Step Authentication
  2. A QR code appears on your screen
  3. Save the backup codes! (very important)

Step 4: Scan the QR code

  1. Open the authenticator app on your phone
  2. Tap the plus icon (+)
  3. Choose "Scan QR code
  4. Point your camera at the QR code in DirectAdmin
  5. The app now shows a 6-digit code

Step 5: Verify the code

  1. Enter the 6-digit code in DirectAdmin
  2. Click "Verify
  3. 2FA is now active!

Saving backup codes

This is crucial! If you lose your phone, you cannot log in without backup codes.

  1. DirectAdmin shows backup codes after activation
  2. Write these on paper and store them safely
  3. Or save them in a password manager
  4. DO NOT save them on your phone

Each backup code works once. Use them only in emergencies.

Logging in with 2FA

After activation, logging in works as follows:

  1. Go to the DirectAdmin login page
  2. Enter your username and password
  3. Click "Login"
  4. You will be asked for a verification code
  5. Open the authenticator app
  6. Enter the displayed code (refreshes every 30 seconds)
  7. Click "Verify"

Tip: The code changes every 30 seconds. Don't wait too long to enter it.

Disabling 2FA

If you want to disable 2FA:

  1. Log in to DirectAdmin (with 2FA code)
  2. Go to Two-Step Authentication
  3. Click "Disable Two-Step Authentication
  4. Confirm with your password
  5. 2FA is disabled

Note: This makes your account less secure. Only do this if really necessary.

Troubleshooting

Code doesn't work

  • Check if the time on your phone is correct
  • Wait for a new code to appear
  • Make sure you select the correct account in the app

Phone lost or broken

  1. Use a backup code to log in
  2. Temporarily disable 2FA
  3. Set up 2FA again with your new phone

No more backup codes

Contact support. We can reset 2FA after verifying your identity.

New phone

  1. Log in with your old phone (or backup code)
  2. Disable 2FA
  3. Set up 2FA again with your new phone
  4. Save the new backup codes

Best practices

  1. Always use 2FA - The extra second when logging in is more than worth it
  2. Store backup codes safely - On paper, in a safe
  3. Update your app - Keep the authenticator app up-to-date
  4. Check regularly - Test that you can still log in

Questions?

Having problems with 2FA? Contact support. We're happy to help.