OpenVPN Access Server: Setting Up Multi-Factor Authentication

In this guide, we will show you how to set up Multi-Factor Authentication(MFA) for your OpenVPN Access Server account.

Please note that you need to reimport your BGOcloud OpenVPN Server profile if you had downloaded the profile while you had MFA active.

 

What Are The Benefits Of a Multi-Factor Authentication For Your OpenVPN Server?

When you set up Multi-Factor Authentication, you make your account more secure and prevent any unauthorized access in the event of credentials leak. The hacker needs to have access to your phone in order to hack into your account.

OpenVPN Access Server supports Time-based One-Time Password (TOTP) Multi-Factor Authentication. You can use TOTP apps, such as Microsoft Authenticator or Google Authenticator to generate these one-time passwords for you.

 

How To Enable Multi-Factor Authentication For BGOcloud OpenVPN Server?

Enabling Multi-Factor Authentication for your accounts in your OpenVPN server is easy and it’s done with a couple of clicks. First, you need to log in to the Admin Panel.

Then to enable MFA for all accounts, go to Authentication>Settings and click on the switch next to the TOTP Multi-Factor Authentication setting. Then scroll down and click on “Save Settings”.
Enabling TOTP in OpenVPN AS by clicking on the switch next to Enable TOTP
clicking on save settings

If you want to enable MFA for just one user, go to User Management>User Permissions and click the Notepad Icon next to the user you want to enable MFA, in our case the default openvpn user and set the Require MFA to Enabled. Scroll down and click on “Save Settings”.
Enabling TOTP for one user in OpenVPNAS
Clicking on save settings

After that, don’t forget to click on “Update Running Server” to apply your changes.
Clicking on update running server

After you update the server settings, you will be prompted to set up your MFA next time you log in your account.

For Google authenticator, tap on “+”, then on “Scan a QR Code” and scan the code on your screen.

For Microsoft authenticator, tap on “+” and then choose “Other account(Facebook, Google, etc.)”

If you cannot scan the QR code, you can set it up with a secret key. Enter the secret key under the QR code when prompted.

After you scan the QR code or enter the secret key, enter the 6-digit code generated by your app and click on “Confirm Code”.
OpenVPN TOTP MFA setup

And that’s it.

You’ve just set up Setting Up Multi-Factor Authentication for your BGOcloud OpenVPN server account. Every time you log in to the Admin panel/user panel, trying to establish a VPN connection to the server, you will be asked for a 6-digit code, generated by your TOTP application.
TOTP in OpenVPN AS CWS
TOTP in OpenVPN Connect

Take a look at our fast and secure OpenVPN Hosting and choose the appropriate plan for your needs.

Blazing Fast & Easy-To-Use OpenVPN Server

Get Started!
icon knowledge

Related Articles

MikroTik CHR: Setup Secure VPN access between client and server using OpenVPN

In this article, we will show you how to set up secure VPN access to your server using OpenVPN....

How To: Connecting Linux devices to OpenVPN Access Server via CLI and APT in Ubuntu / Debian

How To: Connecting Linux devices to OpenVPN Access Server via CLI and APT in Ubuntu / Debian We...

How To: Connecting Android phones to OpenVPN Access Server

No matter what operating system or device you work with, we have an OpenVPN Server solution for...

How To Manage Users in the OpenVPN Access Server

In this guide we will show you how to manage your users in your OpenVPN Access Server. In the...