Our system uses "Strict Cookie Validation" that requires the current IP address and the cookie IP address to exactly match.
A cookie is a small piece of text sent to your browser by a website you visit.
It helps the website to remember information about your visit, like your preferred language and other settings.
There are many types of attacks that target users using information gleaned from these cookies.
For instance, an attacker can capture cPanel session cookies of a logged-in user and use them to hijack the user's cPanel and data.
To avoid this, cPanel servers validate the IP addresses used in all cookie-based logins to checkswhether the IP address that the visitor originally came from matches their IP address on subsequent requests.
If you find yourself being constantly logged out after logging in, it might be that your internet service provider has a very short DHCP lease time.
This will be causing your IP address to be renewed/released/reassigned.
When this happens, our systems sees a mismatch in the cookie IP address and rejects the browser request with an error.
To resolve this, try to see if your ISP can assign you a static IP address.
If you are unable to get a static IP, access Webmail with a static link that contains the server name:
For Webmail access, use the link “https://server_name:2096" and cPanel at “https://server_name:2083”.
Before using this though, ensure that you have made the needed changes to your DNS settings at your DNS provider.
The best way is to replicate the records at cPanel >>> Domains >>> Zone Editor >>> $Domain at your DNS provider's dashboard.
Also, try not to login into cPanel or Webmail concurrently using the same account from two different devices.
If you are using Cloudflare, Cloudflare recommends to use cpanel.$domain_name.com instead of $domain_name/cpanel or $domain_name:2083.
You may also want to take a look at this URL https://support.cloudflare.com/hc/en-us/articles/200169156-Which-ports-will-Cloudflare-work-with- to make sure you are not running ports you shouldn't via Cloudflare.
If you have done all that you could, please do reach out to our team for help.
