AAA and User Management
This section covers RouterOS authentication, authorization, accounting, and user-management features, including local users, certificates, RADIUS, 802.1X, PPP AAA, User Manager, and HotSpot captive portal access. Use these pages to configure identity, access control, and centralized accounting services.
Certificates
This page documents the Certificate management menu in MikroTik RouterOS, covering certificate template creation, configuration properties such as key size and usage, and certificate management including ACME client integration.
Dot1X
This page documents MikroTik RouterOS's Dot1X implementation, covering client and server configurations for IEEE 802.1X port-based network access control using EAP methods like TLS, TTLS, and PEAP.
HotSpot - Captive portal
1 item
PPP AAA
MikroTik RouterOS PPP AAA functionality provides authentication, authorization, and accounting with local and RADIUS support. PPP profiles define default settings for user access records, including bridge configurations, rate limiting, and security options like encryption and compression.
RADIUS
RADIUS enables centralized authentication and accounting for PPP, HotSpot, and other services in MikroTik RouterOS by connecting to a RADIUS server via UDP or RadSec protocol, with configurable ports, shared secrets, and service-specific settings.
User Manager
User Manager in RouterOS provides centralized RADIUS authentication and authorization for services like DHCP, Hotspot, and PPP with support for multiple authentication methods. It includes customizable RADIUS attributes for tunnel configurations and session management, with licensing affecting active sessions.
User
MikroTik RouterOS User management page details user authentication via local or RADIUS servers, password complexity settings, user group policies defining access rights, and router user database properties including login addresses, inactivity actions, and password management.