Insurance Companies requiring MFA on routers to fulfill cyber breach claims
-
I have a client that is being told by their insurance company that they need to have MFA on their routers and switch's. Does PFSENSE have any plans to implement this ability?
-
@gokallit While that might be some stupid check box.. Its exactly what is wrong with the whole system. Saying something has MFA doesn't mean its any more secure. If it is exposed to public internet.. Even if it has MFA - its not as secure as my system that is not exposed, and the only way to log into is to be on a specific admin vlan, connected to my internal secure network that requires multiple aspects to access both physical and authentication wise..
-
Set the GUI to authenticate against a RADIUS server, setup MFA on the RADIUS server. You can even do this with the FreeRADIUS package and OTP/Google Authenticator, but it's better when done on a dedicated RADIUS server.
-
This post is deleted!