- Log in to WHM
- Navigate to the Security Center in the menu options.
- Select “ModSecurity Vendors.”
The Manage Vendors page will appear.
- Install the “OWASP ModSecurity Core Rule Set VX.X” version from the vendor by clicking on +install.
![](https://kb.cantech.in/wp-content/uploads/2024/07/8-7.png)
- Select the “Install and Restart Apache” button.
- The system will display a success message: “You have successfully installed the vendor: OWASP ModSecurity Core Rule Set VX.X.”
- Turn on the toggle button in the Enabled column.
![](https://kb.cantech.in/wp-content/uploads/2024/07/9-4.png)
- Customize the sets included in the ModSecurity application for the vendor:
- Select “Edit.”
![](https://kb.cantech.in/wp-content/uploads/2024/07/10-3-1024x113.png)
- Adjust the status of any sets to On or Off based on your preferences.
![](https://kb.cantech.in/wp-content/uploads/2024/07/11.png)
Now, you need to activate the ModSecurity feature for your cPanel accounts.
To Enable ModSecurity for cPanel Accounts:
- Return to the home page of the interface.
- Choose the “Packages” option from the navigation menu.
- Access the Feature Manager.
You have two options here:
- Add a new features list: Create a new feature list from the beginning and apply it to a cPanel account.
- Manage feature list: Add the ModSecurity Domain Manager feature to the existing list you are currently using for a cPanel account.
Let’s choose the second option.
- Click the “Edit” button under the Manage feature list.
![](https://kb.cantech.in/wp-content/uploads/2024/07/12.png)
- The list of all available features for your server will be displayed.
- Check the box for the ModSecurity Domain Manager feature.
![](https://kb.cantech.in/wp-content/uploads/2024/07/13.png)
- Scroll down and click the Save button.