This guide shows you how to allow cracked (non-premium) players to join your Aternos server. You might need to do this if players receive errors like "Failed to log in: Invalid session".
Enabling cracked mode disables player authentication, allowing anyone to join with any username, even impersonating other players. To protect your server from unauthorized access, we recommend following Step 2 and installing an authentication plugin like AuthMe Reloaded or OpeNLogin.
How to:
Step 1: Enable cracked mode
To allow cracked players, follow these steps:
- Go to exaroton and log into your server.
- Select Options from the left-hand menu.
- Activate the Cracked (online-mode) option.
- Save your settings.
This disables Mojang's account verification, letting non-premium players connect.
Step 2: Improve security with plugins (recommended)
Disabling authentication can pose security risks, such as name spoofing or unauthorized access. To protect your server, consider installing authentication plugins.
- For Bukkit/Spigot/Paper servers, install plugins like AuthMe Reloaded or OpeNLogin.
- These plugins will prompt users to create a password, adding a layer of protection.
Step 3: Use plugins to enable skins (optional)
To allow cracked players to use skins, consider installing a plugin like SkinsRestorer. These plugins can help restore skins for players even in cracked mode.
Player data is loaded based on the user's username, not their Microsoft account. If you change your username or toggle the cracked option, you may lose your player data.
Note: exaroton will try to convert the player data automatically if you change the cracked option.