Knowledgebase

DuoSecurity

Duo Security is a popular two-factor authentication (2FA) solution that provides an additional layer of security for accessing various online platforms, including WHMCS. It offers multiple authentication methods, including push notifications, SMS passcodes, and hardware tokens. Here's how you can set up Duo Security with WHMCS:

  1. Sign Up for Duo Security:

    • Go to the Duo Security website and sign up for an account.
    • Follow the steps provided to set up your Duo Security account.

  2. Install Duo Plugin for WHMCS:

    • Download and install the Duo Security plugin for WHMCS from the WHMCS Marketplace or directly from Duo Security's website.

  3. Generate API Credentials:

    • Log in to your Duo Security admin panel and navigate to the "Applications" section.
    • Click "Protect an Application" and search for "Web SDK". Follow the instructions to create an application and generate API credentials.

  4. Configure Duo Security in WHMCS:

    • In your WHMCS admin panel, go to "Setup" > "Addon Modules".
    • Locate the Duo Security module and click "Activate".

  5. Enter API Credentials:

    • In the Duo Security module settings, enter the API credentials (Integration key, Secret key, and API hostname) generated in your Duo Security admin panel.

  6. Set Up Users in Duo Security:

    • In the Duo Security admin panel, add the users who will be using Duo Security for authentication.

  7. Configure User Accounts in WHMCS:

    • In WHMCS, go to "Setup" > "Staff Management" > "Administrators".
    • Edit the administrator accounts you want to enable Duo Security for.

  8. Enable Duo Security for Administrators:

    • In the administrator's profile, locate the "Two-Factor Authentication" section.
    • Choose "Duo Security" and enter the username of the corresponding user in Duo Security.

  9. Testing Duo Security:

    • Log out of your WHMCS admin panel and log in again. You should be prompted to authenticate using Duo Security.

  10. Verify Duo Security Authentication:

    • Depending on the authentication method you set up in Duo Security, follow the prompts to authenticate (e.g., approve a push notification, enter a passcode, etc.).

Best Practices for Using Duo Security:

  • Encourage 2FA Use: Encourage all administrators to enable 2FA with Duo Security for their accounts.

  • Recovery Codes: Some 2FA setups provide recovery codes. Encourage administrators to store these codes securely in case they are unable to access their 2FA device.

  • Education and Training: Provide training on 2FA and its benefits to all administrators.

By setting up Duo Security with WHMCS, you add an extra layer of security to your admin area, helping to protect sensitive information and prevent unauthorized access.

  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

Downloading WHMCS

To download WHMCS (WebHost Manager Complete Solution), follow these steps: Visit the WHMCS Website: Go to the official WHMCS website at https://www.whmcs.com/. Navigate to the Download...

Installing ionCube Loader

ionCube Loader is a PHP extension that allows you to run encoded and secured PHP files. If you need to install ionCube Loader, follow these general steps: Download ionCube Loader: Visit the...

Creating a Database

Creating a database involves several steps, including planning, choosing a database management system (DBMS), designing the schema, and implementing it. Here's a step-by-step guide to help you...

Database Privileges

Database privileges are permissions that control what actions users or roles can perform within a database. These privileges ensure that only authorized users can access, modify, and manage the...

Installing WHMCS

WHMCS (WebHost Manager Complete Solution) is a popular billing and automation platform for web hosting companies. Here's a step-by-step guide to help you install WHMCS: Download WHMCS: Go...