Hello,
I am long time Mikrotik user, but never user "User Manager" . Now, with RouterOS 7.1.1 stable I have installed User Manager 7.1.1 stable package.
Since it seems documentation is not finished, https://help.mikrotik.com/docs/display/ ... ager-Users
I have several questions:
1. Is there a web access for web administration?
I do have access to https://myrouter.domain.com/um URL with working log-in for end-user. Any other URL should i look into (/user or /userman) returns 404 for me.Is this expected?
I do not see option that user can change its password in UM portal, What am I missing?
2. Can somebody please clarify, what is /user-manager/users , field "otp-secret" and how to use it?
3. Is it possible that user is identified with client certificate fro VPN / PPP access, instead of username/password?
I am using Mikrotik as SSTP vpn server with User Manager as RADIUS on localhost. Working with MSCHAPv2 and user+pass is working.
What else i need to configure if i want to use user+pass with EAP-MSCHAPv2 as VPN? It seems that User manager supports it, but Mikrotik SSTP server does not. Can you confirm / clarify? Tx
4. Is user manager ports (1812 and 1813) opened on all mikrotik device IPv4 and IPv6 addresses? If so, can I use ip firewall for input chain to control (accept/reject) network traffic from other network devices? or user manager has its own some alternate ip address in some subnets?
5. How to specify which /user-manager/router device (with ip and secret) is used for which user/groups ?
I am planning to run one instance of user manager as local RADIUS server, for multiple network devices (switches, routers, wireless, vpn) therefore i need to specify user groups per network device.
Better example, one user must have access to VPN but not WiFI on same user manager.. Or should I play with Attributes on User Group level based on request type?
6. Is there any documentation alternative? If I move to dev or test channel, how can I know and test new features on user manager if no info on how to use it / which CLI commands to run