How to host 2FAuth on Azure VM Instance - ServerAvatar

Published : Nov 26, 2024

Share This Post

cloud-platform

Azure

Azure virtual machines are one of several types of on-demand, scalable computing resources that Azure offers.

Get started with Azure
application

2FAuth

In an age where cybersecurity is paramount, adding an extra layer of security through Two-Factor Authentication (2FA) is a must. The 2FAuth library allows you to implement this security measure with ease. This guide will walk you through the steps to self-host 2FAuth on your own web server, whether on a local machine or a hosted environment, using Apache2 or NGINX as your HTTP server.

More info

2FAuth is a Web application designed to manage your Two-Factor Authentication (2FA) accounts and generate their security codes. The 2FAuth allows you to implement the security measure with ease. It is a self-hosted alternative to OTP generators like Google Authenticator, designed for both mobile and desktop. Azure is a dependable hosting option for 2FAuth, providing scalable infrastructure and simple deployment solutions. ServerAvatar makes it easy and user-friendly to deploy the 2FAuth application on the Azure platform.

Create VM Instance in Azure

Getting Started with Azure:

Azure virtual machines are one of several types of on-demand, scalable computing resources that Azure offers. Typically, you choose a virtual machine when you need more control over the computing environment than the other choices offer. An Azure virtual machine offers the benefits of virtualization without the need to purchase or manage the underlying physical hardware. However, you are responsible for tasks such as configuring, patching, and installing software on the virtual machine to ensure its proper functioning.

Azure virtual machines can serve a variety of purposes. Here are a few examples:

  1. Development and testing: Azure virtual machines provide a fast and straightforward method to deploy a computer environment tailored for coding and testing applications with specific configurations.
  2. Cloud-based applications: Given the variable demand for your application, it can be cost-effective to host it on an Azure virtual machine. You scale up by deploying additional virtual machines as needed and scale down by shutting them down during periods of lower demand.
  3. Extended data center: Virtual machines within an Azure virtual network can seamlessly integrate with your organization's network infrastructure.

Create a VM Instance in Azure:

To create a server in Microsoft Azure, First log in to Microsoft Azure. Once you are there, Follow the steps given below.

Step 1: Create a resource

  • To access the resource creation form, Go to the Microsoft Azure Home and click on the addition icon button to create a resource. See the following image for reference.

Create VM Instance in Azure

  • Then, click on the Create Virtual Machine as derived in the following image:

Create VM Instance in Azure

  • By default, you are in the basic section, you have to fill out the details of your project. Select your Subscription plan and create a Resource group accordingly.

Create VM Instance in Azure

  • After that, you have to enter the following details of your instance which includes:
    1. Virtual machine name: Enter your virtual machine name.
    2. Region: Select the Location of your Instance.
    3. Availability options: There are four options available:
      • No infrastructure redundancy is required. (Recommended)
      • Availability Zone: If you select this option then you will have to choose the Zones available for your instance.
      • Virtual machine scale set: If you select this option then you have to create your own Virtual machine scale set in your current resource and region.
      • Availability Set: If you select this option then you can choose Aligned availability sets or Classic availability sets.
    4. Security type: Azure offers three types of security:
      • Standard: Selecting this type will provide a basic level of security.
      • Trusted launch virtual machines: Selecting this will ensure a secure boot process by leveraging hardware-backed security features to protect against firmware-level attacks and other vulnerabilities. (Recommended)
      • Confidential virtual machines: Selecting this will provide a secure environment where data can be processed in encrypted memory, safeguarding it from unauthorized access even from the cloud provider.
    5. Image: Generally, the 2FAuth application requires Ubuntu 20.04 LTS or a later version for compatibility and support. We recommend using Ubuntu 20.04 LTS x64 or Ubuntu 22.04 LTS x64 as an operating system.
    6. VM architecture: Select the radio button that shows x64 bit.
    7. Size: Select the VM component size as per your requirements.
    8. Enable Hibernation: Ignore this checkbox.

Create VM Instance in Azure

  • Following the steps you have to enter the Administrator account details:
  1. Authentication type: You can either use the SSH public key or password for authentication, we recommend to use SSH public key.
  2. Username: Enter username of your choice.
  3. SSH public key source: There are three sources available in Azure for SSH public key:
    • Generate new key pair: If you want to generate a new SSH public key then you can choose this option and also you can select encryption format that is RSA SSH format or Ed25519 SSH Format. (Ed25519 provides enhanced performance and security using a smaller key size, whereas RSA remains prevalent, especially in legacy systems and applications).
    • Use existing key stored in Azure: Select this if you have stored any SSH public key in Azure.
    • Use existing public key: Select this if you already have a public key of your own.
  • Now you have to set up Inbound port rules. Inbound port rules define how incoming network traffic is handled by a device or network service. These rules specify which ports on the device or service are open and accessible from external sources, such as the Internet or other networks. In this section, you have to select the ‘Allow Selected Port’ radio button as public inbound rules and select the inbound port as shown in the picture below.

Create VM Instance in Azure

Step 2: Select the Disk for the Virtual Machine

  • You can select the disk according to your requirements and needs. You can refer to the image to see the options available in Azure for configuring the disk.

Create VM Instance in Azure

Step 3: Configuring Network Interface Settings

  • Here you have to configure your virtual machine network interface, for that, you have to fill out the details as follows:
    1. Virtual network: Select the network or you can create one.
    2. Subnets: Select by default subnets or if you have knowledge you can manage and configure them on your own.
    3. Public IP: Select the newly created by default public IP or you can create one.
    4. NIC network security group: Leave it Basic as shown in the below image.
    5. Public inbound ports: Click on Allow selected ports.
    6. Select inbound ports: Select port HTTP(80), HTTPS(443) and SSH(22).
    7. Delete public IP and NIC when VM is deleted: Check this box as needed.
    8. Enable accelerated networking: Ignore this checkbox.

Create VM Instance in Azure

  • Moreover, Microsoft Azure also provides load-balancing features. The purpose of this feature is to enhance resource utilization, increase throughput, reduce response times, and prevent any single resource from becoming overloaded.
  • This practice is essential for maintaining high availability and reliability of applications and services by evenly distributing workloads. However, Microsoft Azure offers three options you can choose a radio button according to your needs, for that refer to the image depicted below:

Create VM Instance in Azure

Step 4: Configure management options for your Virtual machine

  • In this step, you can set up management of your virtual machine and you can configure it according to your requirements and needs.

Create VM Instance in Azure

Step 5: Configure monitoring options for your Virtual machine

  • The next step is to configure monitoring of virtual machines. With the help of this feature, you can monitor your virtual machine's Health by setting up Alerts and Diagnosing the issues related to your virtual machine. Please refer to the image mentioned below.

Create VM Instance in Azure

Step 6: Advanced option for your Virtual machine

  • In this step, you can enhance configurations by adding additional agents, scripts, or applications through virtual machine extensions or cloud-init. Microsoft Azure makes various options available in this section to set up your virtual machine. You can select the feature you want to add to your virtual machine. Referring to the image below will give you a better understanding.
  • Note: Feel free to skip this step, if you don't want to add additional features to your Virtual machine.

Create VM Instance in Azure

Create VM Instance in Azure

Step 7: Create tags for your Virtual machine

  • Tags consist of name and value pairs that allow you to classify resources. They facilitate consolidated billing by applying the same tag to multiple resources and resource groups. You can create tags of your own choice and checkmark the resource as per your needs as depicted in the image below.

Create VM Instance in Azure

Step 8: Review And Create A Virtual Machine

  • Lastly, you can check all the details you have entered for creating the Virtual machine in Microsoft Azure and after reviewing it, you can click on the Create button as shown in the image below.

Create VM Instance in Azure

Step 9: Allow ServerAvatar port from Microsoft Azure Cloud panel

  • The final step is to allow a port so that you can connect your virtual machine server to ServerAvatar. Follow the steps shown in the image below.
  1. Go to the Microsoft Azure Dashboard. Create VM Instance in Azure
  2. After that click on your newly created Virtual machine Create VM Instance in Azure
  3. Next, go to the Network settings and create new inbound port rules. Create VM Instance in Azure
  4. Finally, add the details mentioned in the image below. Create VM Instance in Azure

Congratulations! You have successfully created your instance in Microsoft Azure which is now ready to connect with ServerAvatar.

Initial Server Configuration

The Initial server configuration includes the installation and configuration of various packages required to host your website. Usually, You have to write commands and modify configuration files. Luckily, With ServerAvatar, Your full server configuration and optimization can be automated.

Here are the three ways to automatically configure your server with ServerAvatar.

Install and Setup 2FAuth on Cloud using ServerAvatar

Self-Hosting 2FAuth Application: Step-by-Step Guide

Introduction:

In an age where cybersecurity is paramount, adding an extra layer of security through Two-Factor Authentication (2FA) is a must. The 2FAuth library allows you to implement this security measure with ease. This guide will walk you through the steps to self-host 2FAuth on your own web server, whether on a local machine or a hosted environment, using Apache2 or NGINX as your HTTP server.

Requirements:

  1. HTTP Server: You need a web server such as Apache or NGINX. These are the most popular web servers, and you likely have one of them installed if you are using a web hosting service.
  2. PHP: Ensure you have PHP 8.1 or higher installed with the following extensions:
    • BCMath
    • Ctype
    • Fileinfo
    • JSON
    • Mbstring
    • OpenSSL
    • PDO
    • Tokenizer
    • XML
  3. Database: 2FAuth supports various databases such as:
    • MariaDB 10.2+
    • MySQL 5.7+
    • PostgreSQL 9.6+
    • SQLite 3.8.8+
    • SQL Server 2017+
  4. Composer: Composer is required to manage PHP dependencies for 2FAuth. Follow the Composer installation guide.

Step-by-Step Installation Guide:

Step 1: Create a GitHub application

Start by creating a GitHub application using ServerAvatar. This will allow you to easily manage and deploy your 2FAuth instance. Follow these steps:

  1. Open ServerAvatar: Log in to your ServerAvatar account.
  2. Navigate to the Application Dashboard: In the dashboard, find the option to create a new application.
  3. Create the GitHub Application:

This configuration will clone the 2FAuth repository and install the necessary dependencies.

Install and Setup 2FAuth on Cloud using ServerAvatar

Step 2: Set Custom Webroot

Set the custom webroot as public for your application. This can be done from the application dashboard in the application settings. The webroot directory is where your web server searches for the application files to serve.

Install and Setup 2FAuth on Cloud using ServerAvatar

Step 3: Create a Database

From the server dashboard, navigate to the databases section and create a new database. This database will store your application's data.

Install and Setup 2FAuth on Cloud using ServerAvatar

Step 4: Enable SSH Credentials

To securely access your server, enable SSH credentials. SSH (Secure Shell) provides a secure way to log in to your server remotely, ensuring that your data and commands are encrypted. This step is crucial for managing your server and deploying your 2FAuth application.

Install and Setup 2FAuth on Cloud using ServerAvatar

Step 5: Login Using SSH Credentials
  • Once you have your SSH credentials enabled, you can log in to your server. Open a terminal and use the following command: sudo ssh {username}@{ip}
  • Replace {username} with your actual username and {ip} with your server's IP address. You will be prompted to enter your password. After successful authentication, you will have remote access to your server.

Install and Setup 2FAuth on Cloud using ServerAvatar

Step 6: Navigate to the Application Path

With SSH access established, navigate to your application's directory on the server. This is where you will set up your 2FAuth project. Use the cd command to change directories to your application's root path.

Install and Setup 2FAuth on Cloud using ServerAvatar

Step 7: Execution

Run the following command and answer the wizard questions. php artisan 2fauth:install

Install and Setup 2FAuth on Cloud using ServerAvatar

At the conclusion of the wizard, the 2FAuth setup process will be complete.

Install and Setup 2FAuth on Cloud using ServerAvatar

Step 8: Verify Installation

To confirm that your 2FAuth installation is successful, visit your application domain in a web browser. You should see the 2FAuth page, indicating that your setup is complete and your application is ready for development.

Install and Setup 2FAuth on Cloud using ServerAvatar

Conclusion:

By following this guide, you have successfully set up and deployed your 2FAuth application. This process included creating a GitHub application, setting a custom webroot, creating a database, enabling SSH credentials, logging into your server, navigating to the application path, executing the installation script, and verifying your installation. Your 2FAuth application is now up and running, providing an extra layer of security for your users through Two-Factor Authentication. With 2FAuth, you can enhance the security of your web applications, protect sensitive data, and offer your users a more secure login experience. This setup ensures a robust environment for managing your application's security features effectively. Start leveraging the power of 2FAuth to safeguard your application and provide peace of mind to your users.