⚠️ Important: Before implementing these changes, always test them in a non-production environment first. This guide reflects current best practices as of its writing date. Please consult the official Plesk documentation for the most up-to-date information.

Overview

Ready to boost your Plesk server's security? I'll guide you through enforcing Multi-Factor Authentication (MFA) for your customers and resellers. MFA adds an extra layer of security by requiring users to provide two forms of identification before accessing their accounts.

Prerequisites

  • Plesk server with admin access
  • Multi-Factor Authentication extension (included in all default installation)
  • Basic understanding of server configuration files

Key Terms

Multi-Factor Authentication (MFA)
A security system that requires multiple forms of verification before granting access to an account. Typically involves something you know (password) and something you have (mobile device).
panel.ini
The main configuration file for Plesk that controls various system behaviors and settings.

Implementation Steps

1. Locate Your Configuration File

First, you'll need to access your panel.ini file. The location depends on your operating system:

Linux:

vim /usr/local/psa/admin/conf/panel.ini

Windows:

notepad %plesk_dir%admin\conf\panel.ini

Pro Tip: You can also edit this file directly through Plesk using the Panel.ini Editor extension if you prefer a graphical interface.

2. Choose Your Enforcement Method

You have two options for implementing MFA enforcement:

Option A: Strict Enforcement (No Bypass)

Add these lines to enforce MFA without allowing users to skip:

[ext-mfa]
enforce = true
allowSkipEnforce = false

Option B: Flexible Enforcement (With Bypass)

Add these lines to allow users to temporarily bypass MFA setup:

[ext-mfa]
enforce = true
allowSkipEnforce = true

3. Customize the Learning Resources (Optional)

Want to direct users to your custom MFA documentation? Add this line:

[ext-mfa]
learnMoreUrl = https://example_domain.com/mfa-guide

Validation Steps

  1. Save your panel.ini file
  2. Log out of Plesk
  3. Log in as a customer or reseller account
  4. Verify you see the appropriate MFA setup prompt

Common Issues and Solutions

  • Changes not taking effect: Ensure you've saved the panel.ini file correctly and have proper file permissions
  • Syntax errors: Verify your square brackets and indentation in the panel.ini file
  • Users can't access Plesk: Confirm you've communicated the changes to your users and provided clear setup instructions
Did this answer help? 0 People found this helpful (0 Votes)

Top Articles

How To Add Public SSH Key To Your WebHostingM cPanel For SSH Access

Take website security to the next level! This comprehensive guide explores generating SSH keys...
How To Banish Unwanted Visitors From Accessing Your Site In cPanel

Learn how to block IP addresses from accessing your website using cPanel's IP Blocker interface....
How To Change An Email Account Password In WebHostingM cPanel

Learn how to change your email account password in cPanel to enhance email security and protect...
How To Create A cPanel Sub-Account For Your Website Developer

Learn how to create and manage sub-accounts for your website developers using cPanel's Manage...
How To Deal With cPanel Terminal Error: The WebSocket Handshake Failed

Learn how to resolve the "WebSocket handshake failed" error in your cPanel Terminal interface....