The Manage External Authentications interface allows you to manage the OpenID Connect-compliant identity providers that your server's users can use to log in to cPanel, WHM, or Webmail.
Notes:
-
You can link one or more external accounts to one or more cPanel accounts, WHM accounts, or Webmail accounts.
- If you link to an external account through an identity provider that has two-factor authentication enabled, you must also authenticate through that identity provider in addition to any two-factor authentication that you configure on your server.
Configure and enable authentication method
To add an authentication method for a cPanel service, perform the following steps:
- Click the Configuration tab.
- In the desired identity provider's row, click Configure. A new interface will appear.
- Enter the identity provider's configuration settings in the appropriate text boxes.
- Most OpenID Connect-compliant identity providers require Client ID, Client Secret, and entries.
- Most OpenID Connect-compliant identity providers require Client ID, Client Secret, and entries.
- Click Save. The list of identity providers will appear.
- Click the appropriate switch to toggle the identity provider for a service from Disabled to Enabled.
To disable an identity provider for a service, click the appropriate switch to toggle the provider from Enabled to Disabled.
Important:
-
If you remove an identity provider, the system will revoke access for all credentials that require that method.
- The system will automatically disable missing or misconfigured identity provider modules.
- If you use change your server's hostname, you must update the Redirection URI settings in the configuration settings at the identity provider's site to reflect the new hostname.
Note:
Your server will automatically configure cPanelID and populate that identity provider with the necessary Client ID and Client Secret from the license server when you perform a cPanel Update (upcp).
Manage credentials
The Credentials section of the interface lists cPanel services accounts and the external authentication credentials with which they are associated.
- Click the Manage Users tab.
- Click Manage in the appropriate row for that user and service.
- Click Unlink next to the appropriate account.
- Click Unlink to confirm that you wish to revoke the account.
