Restricted Umbraco accessing using 2AF from External Device and not Umbraco Username and Password
Hi,
We have a customer who has IP restrictions to access the admin (Umbraco Folder) by IP at the moment.
They have asked us if there is a way if there internet connection when down for some reason, they want to access the Admin Panel from a tablet or phone, on a different IP range.
At the moment all I can think of is they call us to put in the new IP in to the restriction list on the server.
But if we moved the site to 2FA (Using Azure or AD) I am assuming we can remove the IP restrictions and remove Umbraco Login Username and Password. Then they be able to get access from any where from there site, or form a Mobile Device on a different IP range if there office internet connection when down or there office AD was down.
What about using a VPN instead, like Wireguard?
They just need to connect to the VPN (also available on mobile phones, tablets, ...) and can then connect to the backoffice. And you can keep the IP restriction and limit it to the office IP and VPN IP-range.
Restricted Umbraco accessing using 2AF from External Device and not Umbraco Username and Password
Hi,
We have a customer who has IP restrictions to access the admin (Umbraco Folder) by IP at the moment.
They have asked us if there is a way if there internet connection when down for some reason, they want to access the Admin Panel from a tablet or phone, on a different IP range.
At the moment all I can think of is they call us to put in the new IP in to the restriction list on the server.
But if we moved the site to 2FA (Using Azure or AD) I am assuming we can remove the IP restrictions and remove Umbraco Login Username and Password. Then they be able to get access from any where from there site, or form a Mobile Device on a different IP range if there office internet connection when down or there office AD was down.
What about using a VPN instead, like Wireguard? They just need to connect to the VPN (also available on mobile phones, tablets, ...) and can then connect to the backoffice. And you can keep the IP restriction and limit it to the office IP and VPN IP-range.
is working on a reply...