![]() Click on the "Default" RADIUS server, make sure its enabled, and enter the secret from your config under (in this case, I labelled it STRONG PASSWORD #1). Go into the "Settings" menu, then "Advanced Features" and find the "Radius" section. I'll use the new user interface.įirst up is the UniFI RADIUS server which will contain the user accounts. Restart the Duo proxy service using the method for your particular operating system, and then it's time to configure your UDM/USG. Make a copy of the original, then edit it and the settings you'll need are: Once you have the proxy installed, you'll have to edit the default configuration file. The instructions and download link are here. You'll first need to install the Duo Authentication Proxy. It can be a home server running Linux/Windows, or even a Pi. The second thing you'll need is a server device. So the first thing you'll need is a UniFi gateway, whether it's a USG, UDM, or UDM Pro. ![]() It's also a free and easy way to make sure my VPN is secure (I know, what are the odds, but better safe than sorry!). I also use it as my 2FA method in BitWarden. I prefer Duo because it's way quicker/easier to just approve a push notification from my Apple Watch than to open a password manager and type or copy/paste a code. I had a few people ask me how to do this, so I figured I would write up a little how-to guide for configuring Duo authentication proxy on your UniFi client VPN.ĭuo offers a free tier for up to ten users, with unlimited application configurations, so it's definitely a great choice for two-factor authentication.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |