Two-factor authentication (2FA) adds a second step to your webmail sign-in: after your password, you also enter a one-time code from your phone. Even if someone learns your password, they cannot get into your mailbox without that code. This guide explains how 2FA works on Exact Hosting Enhanced Email and how to turn it on.
About two-factor authentication
2FA protects access to your Webmail sign-in. When it is on, signing in requires two things: something you know (your password) and something you have (a verification code generated by an authenticator app on your phone).
2FA secures webmail. It does not, by itself, secure the mail apps on your phone or computer. Once 2FA is on, those apps can no longer sign in with your normal password and instead need an app-specific password. The two features work together but are independent — see the Enhanced Email Security FAQ.
Note: 2FA may need to be enabled for your brand by an administrator before the option appears in your Webmail settings.
Before you begin
- An authenticator app on your phone. Any standard time-based one-time password (TOTP) app works, such as Google Authenticator, Microsoft Authenticator, or Authy.
- Access to Exact Hosting Webmail. You must be able to sign in with your current password.
- A few minutes of uninterrupted time. You complete setup in one sitting, scanning a code and confirming it.
Tip: Before you start, plan how you will set up app-specific passwords for any phone or desktop mail apps, because they will stop connecting with your normal password once 2FA is on.
Step 1: Open your security settings
- Sign in to Exact Hosting Webmail.
- Open Settings.
- Click Password. This section holds your password and additional security options, including two-factor authentication. See Using the Webmail Settings Menu at Exact Hosting for an overview of the Settings menu.
Step 2: Turn on two-factor authentication
- Find the two-factor authentication option and choose to enable it.
- When prompted, open your authenticator app and either scan the on-screen QR code or enter the setup key manually.
- Your authenticator app begins generating a 6-digit code that refreshes every 30 seconds.
- Enter the current code from the app to confirm, then save.
Warning: Store your backup or recovery information somewhere safe when offered. If you lose your phone without saving it, you can be locked out of webmail.
Step 3: Set up app-specific passwords for your mail apps
Once 2FA is on, any mail app connected over IMAP, POP, or SMTP needs its own password. Generate one per app following Creating App-Specific Passwords for Email, then replace your normal password in each app.
Managing 2FA later
Task | How |
|---|---|
Change your phone or authenticator | Disable 2FA, then re-enable it and set it up on the new device. |
You lost your 2FA device | If you cannot disable it yourself first, contact Exact Hosting Support to have 2FA bypassed, then set it up again. |
Turn 2FA off | Open Settings > Password, disable two-factor authentication, and confirm. |
Next steps
- Create app passwords. Set up app-specific passwords for every connected mail app.
- Review your security options. See the Enhanced Email Security FAQ for common questions.
- Set a recovery method. Add a backup phone or email in the Password recovery section, covered in Using the Webmail Settings Menu at Exact Hosting.
Questions? Contact Exact Hosting Support.
How helpful was this article?
Thanks for your feedback!
Do you still need help? If so please submit a request here.