Two-step validation for exim4 email

Could it be possible that to enter webmail or to configure an account on a device or PC, a 2FA validation could be created? similar to what gmail or microsoft already do? I would gain a lot in security.

No, exim4 does not support 2FA. On webmail, you can setup webmails plugins. For example roundcube:

Not tested.

1 Like


I always have the same problem with roundcube plugins… in what exact path should I put it? If I put it in /etc/rouncube/pluguins and then add the following in /etc/roundcube/;

$config[‘plugins’] = array(‘twofactor_gauthenticator’);

It doesn’t work, roundcube doesn’t show the option to activate that plugin…

Hello @servtelecom,

Steps to install twofactor_gauthenticator rc plugin in Hestia CP:

cd /var/lib/roundcube/plugins/
git clone
cd twofactor_gauthenticator/
mkdir /etc/roundcube/plugins/twofactor_gauthenticator/
cd /etc/roundcube/plugins/twofactor_gauthenticator/
ln -s /var/lib/roundcube/plugins/twofactor_gauthenticator/
chown -R root:www-data /etc/roundcube/plugins/twofactor_gauthenticator/
chown -R root:www-data /var/lib/roundcube/plugins/twofactor_gauthenticator/

Now edit /etc/roundcube/ file to add twofactor_gauthenticator to config_plugins directive.


$config["plugins"] = ["password", "newmail_notifier", "zipdownload", "archive", "managesieve", "contextmenu", "markasjunk", "twofactor_gauthenticator"];

Now edit file /etc/roundcube/plugins/twofactor_gauthenticator/ to configure the preferences for the plugin (don’t forget to edit users_allowed_2FA in this config file to enable the plugin for your user or domain).


1 Like