Help Center/ Host Security Service/ FAQs/ Security Configurations/ What Do I Do If I Cannot Enable 2FA?
Updated on 2024-01-11 GMT+08:00

What Do I Do If I Cannot Enable 2FA?

Symptoms

  • In the 2FA list, there are no servers with disabled 2FA.
  • After 2FA is enabled, it does not take effect.
  • Failed to enable 2FA.

Possible Causes

  • Server protection is not enabled.
  • 2FA settings have not taken effect. After 2FA is enabled, it takes about 5 minutes for the settings to take effect.
  • For a Linux server, Key pair is selected as the login mode.
  • 2FA conflicts with G01 or 360 Guard (server edition).
  • The SELinux firewall is not disabled.

Solution

  1. Check whether HSS has been enabled for the server for which you want to use 2FA.

    • If it has, go to 2.
    • If it has not, enable HSS first.

  2. Check whether it has been 5 minutes since you enabled 2FA.

    • If it has, go to 3.
    • If it has not, wait for 5 minutes and check whether 2FA takes effect.

  3. Check whether your server is a Linux server with Key pair selected as its login mode.

    • If it is, disable the Key pair login mode and enable the Password login mode.
    • If it is not, go to 4.

  4. Check whether the SELinux firewall is disabled on your server.

    • If it is, go to 6.
    • If it is not, run either of the following commands to disable it.
      • To temporarily disable the SELinux firewall, run the following command:

        setenforce 0 #Temporarily disable

      • To permanently disable the SELinux firewall, run the following command:

        vi /etc/selinux config

        selinux=disabled #Permanently disable

  5. Check whether you have stopped G01 and 360 Guard (server edition) (if any) on your server.

    • If you have, go to 6.
    • If you have not, stop the software.

  6. Contact technical support.