In order to utilise the improved security offered by Two-Factor Authentication (2FA) you will need a smartphone and a time-based one-time password (TOTP) application, for example Google Authenticator. Once setup you will be unable to login without your mobile phone.
Login to cPanel and from within the Security section click 'Two-Factor Authention'
Within your mobile phone application you can either scan the QR barcode or enter the Account and Key details. Once the account is added your phone will start generating 6 digit one-time Security Codes. You will need to enter the currently displayed code in to the Step 2 Security Code box and click 'Configure Two-Factor Authentication'.
This completes the process and your cPanel account will now require you to provide a 6 digit code from your mobile phone application every time you login.
