Account Settings
The Account page (/account) lets users manage their profile, security settings, API access, and multi-factor authentication.
Displays read-only information about your account:
- Email - Your login email address
-
Role -
AdminorUnprivileged - Last Signed In - Timestamp of your most recent login
- Created - Account creation date
- Devices - Number of VPN devices you own
- Rules - Number of firewall rules assigned to you
Update your local authentication password. Requires entering your current password for verification, then the new password with confirmation.
Lists any OIDC identity providers linked to your account. When you log in through an OIDC provider, the connection is recorded here showing the provider name and linked email.
Generate bearer tokens for programmatic access to the REST API.
- Prefix - Optional label prefix for the token
- Expiry - Token lifetime (24h, 7d, 30d, 90d, or never)
- Click Add API Token to generate a new token
Important: The full token is shown only once at creation time. Copy it immediately.
Existing tokens are listed in a table with their prefix, creation date, and expiry. Click the delete button to revoke a token.
Add a second factor to your account for enhanced security:
- Click Add TOTP Method
- Scan the QR code with your authenticator app (Google Authenticator, Authy, 1Password, etc.)
- Enter the 6-digit verification code to confirm setup
- Click Add Security Key
- Follow your browser's prompt to register a hardware key (YubiKey) or platform authenticator (Touch ID, Windows Hello)
- Name the key for identification
Once any MFA method is registered, all future logins will require the second factor after password entry.
Delete your account permanently. Requires typing your email address for confirmation. This action:
- Removes all your devices and their WireGuard configurations
- Deletes all your firewall rules
- Revokes all API tokens
- Removes all MFA methods and SSO connections