Implemented MFA / 2FA for Omada Cloud
 This repeated request has been merged into the main thread Request - Please add two factor authentication to the omada cloud managment. . Please vote on the main thread.
Implemented MFA / 2FA for Omada Cloud
Hi there,
As I've been working through a medium sized PoC/PoV deployment I came across a security gap in the Omada Cloud offering.
Is MFA / 2FA functionality on the roadmap for the OC200 / software controller and the cloud remote managemnt?
A similar setup to how Ubiquiti does it would be great! (via an authenticator app or WebAuthN).
This would be a great addition!
Thanks!
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hi All,
I'd like to close this thread since 2FA has been supported from Omada Controller v5.0.
To enjoy 2FA, please upgrade your Omada Controller to v5.0 or later version. Cheers!
Add a screenshot of part of the Release Note for Controller v5.0.
- Copy Link
- Report Inappropriate Content
@WirelessForEver Hi! Yes that would be nice to have. I am testing the OC200 and a couple TPLink AP's compared to Ubiquiti I have been using for years. I am trying to find a solution much better than their hardware.... been going downhill for sure in last 3 years......
- Copy Link
- Report Inappropriate Content
You are thinking on the exact same lines as me!
Hopefuly TP-Link learns from Ubiquit's success with their long term and continous feature / firmware releases!
If these little things can just be added with future releases...
The hardware performance and quality of this new Omada line is awesome.
- Copy Link
- Report Inappropriate Content
@WirelessForEver Yes we are thinking on the same page!!! Been using their stuff for 15 years and I feel they have NO QA anymore and I cannot run my business with those type of failures per week and that amount of stress it gives us on worrying......
Yes so far my testing has went well with TPlink... it doesnt have all the bells and whistles but I just want it to work and be solid. YES if TPlink would do things right and this is the perfect time for them to get ALOT of new clients if they do it correctly and learn from all their mistakes!!!!
- Copy Link
- Report Inappropriate Content
You're so right - we're 100% on the same page.
Take a look at my post history if you're curious on any of the problems I've found so far while I've been doing my eval.
- Copy Link
- Report Inappropriate Content
@WirelessForEver Yes history doesnt look to bad to me. I am wanting TPLink to do the same SDN so all hardware is managed in the OC200 just like Unifi has now. I think its coming out but no ETA? Speed wise TPlink little behind on radios like the Airmax ones. I am looking for solid routers for sure..... Unifi routers are just totally junk in my book.
- Copy Link
- Report Inappropriate Content
@Doc2485 Pretty impressed with this little router:
TP-Link Load Balance Broadband Router TL-R470T+ V2
https://www.youtube.com/watch?v=YDUfP8a5zNY
- Copy Link
- Report Inappropriate Content
@WirelessForEver It really is a must to be included. Ransomware is now targeting MSP's because once they get in the MSP, they have access to all the companies that they have access to.
- Copy Link
- Report Inappropriate Content
I would really appreciate it if 2FA worked; so i will only use local login and not use the cloud controller.
- Copy Link
- Report Inappropriate Content
I just setup the OC200 with a couple EAP245v3 APs at home. Works amazing.
Big disappointment on the lack of 2FA for cloud login. Exposing a wifi network to the cloud on an auth model that is susceptible to brute force attacks is irresponsible.
I'm shocked that it's not an option, so it's disabled for now which limits this solutions remote management capabilities without a VPN connection.
If they overlook such a fundamental security requirement, what else is missing?
- Copy Link
- Report Inappropriate Content
Thanks for supporting me on this everyone!
If TP-Link won't do MFA I'd even be happy with allowing us to configure our own IDP via SAML 2.0 / ODIC and do MFA that way... e.g. Okta, Azure AD or Duo + another IDP.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 10
Views: 17117
Replies: 54