Project

General

Profile

Feature #4242

Two Factor or OTP Authentication for Admin Interface

Added by Charlie Ross about 6 years ago. Updated 4 months ago.

Status:
New
Priority:
Normal
Assignee:
-
Category:
Authentication
Target version:
-
Start date:
01/19/2015
Due date:
% Done:

0%

Estimated time:
Release Notes:
Default

Description

Hi developers!

In a never-ending quest to beef up security, it would be great to have the ability of using two-factor authentication or one-time-passwords to access the admin interface (via web or ssh/console).

The Yubikey seems like a particularly popular system for accomplishing something like this. (http://www.yubikey.com)

Thank you for considering this,

Charlie

History

#1 Updated by Chris Buechler about 6 years ago

Many if not most 2FA solutions support LDAP and/or RADIUS so are already supported. That said, enhancements here would be welcome.

#2 Updated by Chris Buechler about 5 years ago

  • Category set to User Manager / Privileges

#3 Updated by Dan Journo about 4 years ago

Ping. I'd love this as a built in feature! I'm using the local database and dont want to get into managing another system to gain access to two factor authentication.

#4 Updated by Florent A over 3 years ago

This feature will be really helpful to meet the specifications from the PCI-DSS / ISO27001 or another security certs.

#5 Updated by Jim Pingle over 1 year ago

  • Category changed from User Manager / Privileges to Authentication

#6 Updated by Dan Journo over 1 year ago

Charlie Ross wrote:

Hi developers!

In a never-ending quest to beef up security, it would be great to have the ability of using two-factor authentication or one-time-passwords to access the admin interface (via web or ssh/console).

The Yubikey seems like a particularly popular system for accomplishing something like this. (http://www.yubikey.com)

Thank you for considering this,

Charlie

Totally agree. Even if it's possible with LDAP etc, it would be nice for it to come as a built-in feature to increase the uptake of 2FA for something as critical as a firewall.

#7 Updated by Justin P about 1 year ago

This is even more necessary with the recent vulnerabilities that were released.

#8 Updated by Emanuel Persson 4 months ago

I also really want to see this in the Future.

Also available in: Atom PDF