Hestia Control PanelAccount
To access your account settings, click the user button in the top right.
Security
Password
The password requirements are as follows:
- At least 8 characters, 14 or more are recommended.
- At least 1 number.
- At least 1 capital letter and 1 lowercase letter.
If you want to generate a secure password, you can use 1Password’s generator.
Two-factor authentication (2FA)
- In your account settings, check the box labeled Enable two-factor authentication.
- Click the Save button in the top right.
- Scan the QR code using an authentication app.
- Save your Account Recovery Code somewhere safe, in case you lose access to your authenticator.
Need a 2FA app?
If you do not have an authenticator app, here are a couple of recommendations.
- iCloud Keychain – Windows, macOS, iOS
- Tofu Authenticator – Open-source, iOS only
- Aegis Authenticator – Open-source, Android only
- Raivo OTP – Open-source, iOS and macOS only
- Google Authenticator
- Microsoft Authenticator
- Authy – Free, has a cloud sync feature
- 1Password – Paid password manager
- Bitwarden – Password manager. 2FA in premium plan only
- Vaultwarden (AGPL, self-hosted), optionally with Bitwarden clients
Login restrictions
Hestia has the following options to help you secure your account:
- Disable login into the account.
- Whitelist your IP address to login into your account.
Security logs
The security logs contain various information, such as: changes to web domains, API access, backup creation, etc. Click the Logs button to view them.
Login history
On the security logs page, click the Login history button to see the login history. The history contains the time of login, IP address, and user agent of the browser that was used.
SSH keys
Click the Manage SSH keys button to view the installed keys.
Adding an SSH key
- Click the Add SSH key button.
- Copy your public key in the text area.
- Click the Save button in the top right.
Deleting an SSH key
- Hover over the SSH key you want to delete.
- Click the delete icon on the right of the SSH ID.
Need to generate a key?
If you do not have an SSH key, here are a couple of ways to generate one.
- For Windows: Putty.
- For macOS and Linux use
ssh-keygen.
You can also use an app to manage them:
API access keys
INFO
This option is disabled by default for standard users. An administrator needs to enable it in the server settings.
Click the Access Keys button to view the access keys. Access keys are used for the API to autenticate instead of using the username and password.
Creating an access key
- Click the Add Access key button.
- Select the permission sets you want to enable.
- Click the Save button in the top right.
- Copy the access key and the secret key. Make sure to save the secret key somewhere safe as it cannot be viewed once the page is closed.
Deleting an access key
- Hover over the access key you want to delete.
- Click the delete icon on the right of the access key.