Regularly changing your cPanel password is good security practice. Your cPanel password is also used for FTP access (via your main account) and SSH access, so changing it affects all of these.
Please note: Screens and options may vary slightly depending on your cPanel version and hosting plan.
Changing Your Password
- Log in to your cPanel account.
- In the Preferences section, click Password & Security.
- Enter your Old Password (current password).
- Enter and confirm your New Password. Use the Password Generator for a strong random password.
- Click Change your password now.
Password Requirements
- Minimum 12 characters (recommended: 16 or more).
- Mix of upper case, lower case, numbers, and symbols.
- Avoid common words, dictionary words, or personal information.
- Don't reuse passwords from other accounts.
After Changing Your Password
- Update the password in any saved FTP client connections.
- Update the password in any SSH configurations.
- If you have scripts that use your cPanel credentials (e.g. automated backups to remote servers), update those as well.
- Your email account passwords are separate — they're not affected by changing the cPanel password.
If You've Forgotten Your Password
If you can't log in to cPanel:
- Try the "Forgot Password" link on the cPanel login page (if available).
- Contact your hosting provider to reset your password.
- If your hosting provider uses WHMCS or a similar client area, you may be able to reset the cPanel password from there.
Tips
- Use a password manager (e.g. 1Password, Bitwarden, KeePass) to generate and store complex passwords.
- Enable two-factor authentication (2FA) alongside a strong password for maximum security.
- Never share your cPanel password via email or unencrypted communication.
What Next?
- Enabling Two-Factor Authentication (2FA) — Add a second factor to your login.
- Updating Your Contact Information — Ensure password reset notifications reach you.
