Access only via digital certificate?

toplisek

• February 15, 2018 14:02

Which steps to be taken to secure login attempts only using valid digital certificate on local PC?

• 

  cPanelMichael

  • February 15, 2018 19:08

  Hello, It's not currently possible to access cPanel without entering the account password unless you were to utilize an external authentication provider. We document more information about external authentication at: Manage External Authentications - Version 70 Documentation - cPanel Documentation For instance, if you were to setup external authentication using Google as the provider, you'd sign in to your Google account to access cPanel (Google provides a method to authenticate with a mobile device). Thank you.

  0
• 

  toplisek

  • February 20, 2018 14:07

  I have noticed it is all the time message like cPanel Hulk Brute Force Protection:Excessive Number of Failed Login Attempts. It is time consuming to validated all the time IP's as black list.

  0
• 

  cPanelMichael

  • February 20, 2018 14:59

  Hello, One option to consider is to modify your cPHulk configuration to allow more login failures if you want to allow legitimate users more failed login attempts before they are locked out. Thank you.

  0
• 

  toplisek

  • March 21, 2018 07:56

  I have set this option. Can be limited attempts as there are excessive number of failed login attempts all the time as it is not secured to specific IP range like Germany limitation as there are also attempts from Asia.

  0
• 

  cPanelMichael

  • March 21, 2018 16:04

  Can be limited attempts as there are excessive number of failed login attempts all the time as it is not secured to specific IP range like Germany limitation as there are also attempts from Asia.

  
  We offer the ability to whitelist or blacklist access by country with cPhulk in cPanel & WHM version 70: 70 Release Notes - Version 70 Documentation - cPanel Documentation Is this what you are looking for? Thanks!

  0
• 

  toplisek

  • March 22, 2018 13:30

  Is it version 70 as a recommended stable version due to upgrade from 68 or any issue can arise?

  0
• 

  cPanelMichael

  • March 22, 2018 18:17

  Hello, cPanel & WHM version 70 is only available on the Current and Edge build tiers at this time. You can read more about build tiers and the release process at:

  0
• 

  toplisek

  • April 03, 2018 08:29

  Thank you for this information. This is the big improvement.

  0
• 

  keat63

  • April 03, 2018 09:19

  I'm not sure if this helps in your situation, but you can use Host Access Control to limit cpanel access. I have Cpanel limited to my work IP (static), and a small range of IP's from my home ISP. (dynamic) To set up a rule, you will need to add the service you wish to create the rule for, the IP address(es) you wish to allow or deny, and then the action to be taken (allow or deny). For example, you could set up the following rules to lock down your SSH service: Daemon Access List Action Comment sshd 192.168.0.0/255.255.255.0 allow Allow local SSH access sshd 198.66.254.254 allow Allow SSH from my specific IP sshd ALL deny Deny access from all other IPs Note that the rules have an order of precedence. You need to place your allow rules before your deny rules if you are choosing to use the allow from a few, then deny from all technique.

  0

Please sign in to leave a comment.