Enable Two-Factor Authentication: Extra Protection for Your CURIAWEB Account
Two-factor authentication, or 2FA, is one of the most effective measures for adding extra protection to your CURIAWEB account against unauthorised access. In addition to your password, a second factor is required during login, for example a time-based code from an authenticator app on your smartphone. This means that the password alone is no longer sufficient to access your account.
This is especially useful for a client account that contains hosting, domains, invoices, and personal customer data. Your CURIAWEB client area contains important information and allows you to manage services. If unauthorised persons gain access to such an account, this can lead to serious security and administration problems. Enabling two-factor authentication significantly improves account security because an attacker would need access not only to the password, but also to the second factor.
In brief: What does two-factor authentication do?
Two-factor authentication protects login with an additional security code alongside the password. Even if someone knows your password, they cannot easily sign in without the additional code from your authenticator app.
Why is 2FA important for your client area?
A password can fall into the wrong hands for various reasons, such as phishing, malware, data leaks at other services, or reuse of the same password on multiple websites. Two-factor authentication reduces this risk because access also requires a current confirmation code.
The second factor is particularly effective because it is only valid for a short time and is usually generated on your own smartphone. This makes login better protected than with a password alone. For customer accounts used to manage hosting products, domains, and billing information, this additional security layer is highly recommended.
How to enable two-factor authentication
Activation is carried out directly in the security settings of your CURIAWEB client area. You need a suitable authenticator app on your smartphone for setup.
Procedure overview:
- Log in to the CURIAWEB client area.
- Click your name in the top right corner.
- Select “Security Settings”.
- Click the “Enable Two-Factor Authentication” button.
- Open your authenticator app on your smartphone.
- Scan the QR code displayed in the client area with the app.
- Enter the confirmation code generated by the app in the client area.
- Save the displayed backup code securely.
Which app can be used?
For two-factor authentication, we recommend using an authenticator app such as Google Authenticator or Authy. These apps generate time-based security codes that are entered in addition to your password during login.
It is important to use an app that you can reliably access. The second factor is linked to the setup in this app. If you change or lose your smartphone, you will need access either to your configured authenticator app or to the backup code in order to regain access to your account.
Recommendation: Do not wait until a security issue occurs before setting up two-factor authentication. Enable 2FA early to protect your account preventively.
Why does the QR code need to be scanned?
During setup, the client area displays a QR code. This QR code connects your authenticator app with your CURIAWEB account. Once you have scanned the QR code, the app continuously generates new confirmation codes that are valid only for a short time.
To complete activation, you must enter a currently displayed code from the app in the client area. This verifies that setup is working correctly and that the app is generating the correct codes.
Important: Store the backup code securely
After activation, you receive a one-time backup code. This code is especially important because it can help you regain access to your account if you lose your smartphone or no longer have access to your authenticator app.
Make sure to store the backup code securely. You can print it or keep it in a protected location. Do not store it unprotected in a publicly accessible place and do not share it with other people. The backup code is a security-relevant access key to your account.
Important: The backup code is your only access option if you lose your smartphone. Save or print it securely immediately after activation.
What happens at the next login?
After successful activation, you log in to the client area as usual with your email address and password. You will additionally be asked to enter the current code from your authenticator app. Login is completed only when both the password and the second factor are correct.
This prevents a password alone from being enough for access. If another person only knows your password, the second factor is still missing. This additional step is exactly what makes two-factor authentication a very effective security measure.
Handle 2FA and the backup code carefully
Treat your authenticator app and backup code with the same care as your password. Never share codes with third parties. CURIAWEB will not ask you to provide your current 2FA code or backup code outside the intended login or recovery process.
If you change your smartphone, you should check in good time whether your authenticator app is correctly set up on the new device. This helps prevent losing access to the second factor after a device change.
More security with little effort
Enabling two-factor authentication takes only a few minutes, but provides important additional protection for your customer account. Especially for accounts used to manage hosting, domains, and billing data, 2FA is a recommended security measure.
Although 2FA does not replace careful password handling, it effectively complements account security. Continue using a strong, unique password and additionally protect access with two-factor authentication.
Summary
Two-factor authentication protects your CURIAWEB account with a second security code in addition to your password. You enable 2FA in the client area by clicking your name in the top right corner and opening Security Settings. Then scan the QR code with an authenticator app such as Google Authenticator or Authy and confirm setup with a code. Make sure to store the one-time backup code securely, as it may be your only access option if you lose your smartphone.
