I have a suite of services exposed using a reverse proxy (npm) protected with passwords, but I’m always a bit nervous that username/passwords aren’t enough – is there a way to set up 2FA either on Nginx Proxy Manager side or on, e.g., the 'arr suite of apps?

  • dotslashme
    link
    fedilink
    English
    arrow-up
    24
    ·
    1 year ago

    You could look into apps like authelia, keycloak, authentic, etc.

    • Gutless2615@ttrpg.networkOP
      link
      fedilink
      English
      arrow-up
      9
      ·
      1 year ago

      authelia

      Ah that sounds like exactly what I’m looking for, actually. Thanks. Any tutorial you have that you can recommend?

    • FancyGUI@lemmy.fancywhale.ca
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      Yep! Authentik is my choice there, and it works flawlessly for my use-cases. The only thing that keeps me on my toes is still the celery dependency on redis that makes it not HA. They’re working on it and making me happy :)

    • kratoz29@lemmy.world
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      I have a Synology NAS (my humble server) would that work with it too??? For example the DSM page (which I don’t have exposed).

      • Pfosten@feddit.de
        link
        fedilink
        English
        arrow-up
        2
        ·
        1 year ago

        Synology’s DSM has built-in MFA support, though it also has some features for external identity management. I don’t think Keycloak and so on would be compatible though.