An additional security layer that requires not just a password but also a second form of verification (e.g., a code sent to your phone).
Configure password requirements in Setup → General Settings → Security. Set parameters for minimum length, character variety, etc.
Regularly check for and apply updates from the WHMCS admin panel or through their official website.
Encrypts data transmitted between users and your WHMCS installation to prevent eavesdropping and man-in-the-middle attacks.
Keeps a record of admin actions, which can be useful for auditing and identifying suspicious activity.
Manages which staff members have access to different parts of WHMCS.