Thanks, This looks like it may be the way to. Ill do some research.You can use Radius for authentication purpouse and enable any of the many 2FA plugins. Check, as an example, FreeRadius with Google Authenticator or Latch (from ElevenPath)
We are using user passwords and certificates already, but the insurance company says that does not qualify as 2 factor (we had the same thought) We got radius working yesterday so today I am going to try to tackle Google authenticator. we spent a few hours running the freeradius debugger to find all the little pieces that aren't covered in the tutorials2FA on mikrotik can be users-passwords + certificates. If you want MFA, probably external radius.
would be great if you share them.we spent a few hours running the freeradius debugger to find all the little pieces that aren't covered in the tutorials
Theoretically: why not ? It's an interface carrying IP like so many other ones.A different but related question, would it be possible to use WireGuard VPN, which lands the user on a Hotspot?
TheoreticallyTheoretically: why not ? It's an interface carrying IP like so many other ones.A different but related question, would it be possible to use WireGuard VPN, which lands the user on a Hotspot?
No. It looks like ROS 7's User Manager package is a Radius server which has TOTP capabilities.As i understood here, there is no free option to use 2FA for Mikrotik routers!?!? If i want a free radius to validate my logins i will have to run it on a server and forward the router to that server!?
confirming this also.I confirm, usermanager works with Google Authenticator. tested and working perfectly.
https://foisfabio.it/index.php/2024/04/ ... ik-otp-vpn