Access WHM/cPanel Without Root Password

The WHM/cPanel can be accessed without knowing the actual password if it satisfies a single condition i.e you must have shell access to the server. If you have the shell access through SSH Keypair or using VPS nodes on the server, you can simply access the WHM panel without knowing the actual root password of the server.

The steps to create a session to access the WHM panel for root or any reseller accounts without a password is detailed below.

whmapi1 is the command which could be executed via Linux Shell so as to accomplish this. WHM API 1 accesses the WHM interface’s features. You can make use of this API to administrate cPanel and WHM reseller accounts, perform server administration tasks and manage cPanel & WHM services.

Whmapi command to create a WHM root session from the command line.

By executing the following command you can create a temporary root WHM session:

# whmapi1 create_user_session user=root service=whostmgrd

The output will be as the following:
CT-xxxxxxxxx-bash-4.2# whmapi1 create_user_session user=root service=whostmgrd

cp_security_token: /cpsess3736615296
expires: ‘1519064107’
service: whostmgrd
session: root:GSs8CH3T4YhRuk4o:create_user_session,340efbb4413cee451a9f2d115a14760c
command: create_user_session
reason: Created session
result: 1
version: 1

This is a one-time-use session to access WHM panel. You can paste the WHM URL in the browser which would in turn bypass the need to enter a root password.

Create a WHM session for reseller account

# whmapi1 create_user_session user=USERNAME service=cpaneld

Replace USERNAME with the exact cPanel username.

This is a one-time-use session to access WHM/cPanel panel. The system destroys the temporary session after 15 minutes of inactivity.

Leave a Reply