If it is not available yet, perhaps incorporate 2 factor authentication to a mobile app. This way the router admin has to confirm access to whoever is trying to sign into the router ui. A little bit more security!
Sounds good to me also.
I agree your point of vue