2FA – The Double Lock Security

2FA (Two-Factor Authentication) is a security process in which a user provides two different authentication factors to verify themselves. This adds a critical layer of defense, making it significantly harder for unauthorized users to gain access to your hosting account or website.

1. The "Three Factors" of Authentication

True 2FA requires a combination of at least two of these three categories:

• Knowledge: Something you know (your password or PIN).
• Possession: Something you have (your smartphone, hardware key, or email account).
• Inherence: Something you are (fingerprint, FaceID, or retina scan).

2. How the 2FA Process Works

When you enable 2FA on your Jiinubi account or WordPress site, the login flow changes:

1. Enter your standard username and password.
2. The system recognizes the correct password but pauses. It asks for a "Verification Code."
3. Open an app on your phone (like Google Authenticator or Authy) and type in the 6-digit code that changes every 30 seconds.
4. You are granted access.

3. Common Methods of 2FA

4. Why You Need 2FA for Your Hosting Account

Your hosting account is the "brain" of your online business. If a hacker gains access to your Jiinubi Client Area:

• They can delete your entire website.
• They can steal your customers' personal data.
• They can redirect your domain to a malicious site.
• They can change your billing info to steal your commissions.

2FA makes these scenarios nearly impossible.

5. What if I lose my phone?

When you first set up Two-Factor Authentication, the system provides Backup Codes (or Recovery Codes).

• Action: Print or store them in a secure location.
• Use Case: If your phone is lost, stolen, or broken, these single-use codes allow you to bypass 2FA and regain access.