@DQ1  I'm afraid we don't have any specific 2FA integrations with Hamachi at this time.  

For more info around Hamachi security and how we authenticate each user login, please see this reference page:  https://www.vpn.net/security 

Thanks for the response AshC.

I get that Hamachi is very secure and administering the network is secured but it would appear that once granted, membership of the network is permanent.

If an endpoint that is connected is lost / stolen or otherwise compromised then access to the Hamachi network is automatic.  If we are aware of the breach then obviously we can kick the endpoint from the network.

It would give my management team a lot of comfort if joining the network each day required some authentication.

My day job requires me to connect to many different VPNs and they all require a username / password and most are 2FA in some form.  It does feel like a glaring hole in the functionality of Hamachi at this point.

Is there somewhere to raise enhancement requests?

@DQ1  I've edited this post to include the 'Idea' tag, which will get reviewed by the product team when considering new enhancements. 

We also require this, essentially I will have to move away as our insurers now require 2fa on all network connections

BUMP this idea up please. 

We're being asked to find a way of implementing 2FA authentication on VPN user connections too. 

Hi, it seems strange to me that just a product like a VPN does not implement greater security systems in terms of passwords like 2FA now that the whole computer world is moving in that direction also dictated by the new stringent rules of the GDPR.

Hi,

While the Hamachi Client software does not include 2FA, signing into your LogMeIn account to access/manage your Hamachi network does. 

In the case of a Hamachi client computer being stolen the first thing you should do is Detach the Client to remove its access to the network. If you are concerned that whoever took the computer may also know enough details to reconnect the client to your network you can add a Password to the network and require new connection request to be approved.