[193550] in North American Network Operators' Group
Re: IPv6-enabled multi-factor providers (not DUO)
daemon@ATHENA.MIT.EDU (Christopher Morrow)
Thu Feb 2 14:42:00 2017
X-Original-To: nanog@nanog.org
In-Reply-To: <CALwYWVM2F+SUPLqh0bTVyLb_YOXsLG-cYKJEF8bpUStZnrS0Dg@mail.gmail.com>
From: Christopher Morrow <morrowc.lists@gmail.com>
Date: Thu, 2 Feb 2017 14:41:56 -0500
To: David Sotnick <sotnickd-nanog@ddv.com>
Cc: NANOG <nanog@nanog.org>
Errors-To: nanog-bounces@nanog.org
On Thu, Feb 2, 2017 at 11:32 AM, David Sotnick <sotnickd-nanog@ddv.com>
wrote:
> Hi NANOG,
>
> (Apologies if this is slightly off-topic; there are a lot of IPv6-advocates
> here who might have some insights).
>
> At my day job, we use Duo Security for MFA. It works well, with the caveats
> that it's cloud-based and heavily dependent on Amazon AWS.
>
>
https://aws.amazon.com/blogs/aws/new-ipv6-support-for-ec2-instances-in-virtual-private-clouds/
should be all set, right?
> We had an IPv4 outage last weekend and of course our Duo MFA only supports
> IPv4 and given their dependence on AWS I'm not hopeful that they'll have
> IPv6 access to their API servers any time this year. If they had, my
> weekend would have gone a lot easier.
>
> What MFA alternatives are out there that support IPv6? If we found a
> suitable alternative, I'm sure we'd consider shifting our business their
> way.
>
> Thanks!
>
> -Dave
>
