I have a suite of services exposed using a reverse proxy (npm) protected with passwords, but I’m always a bit nervous that username/passwords aren’t enough – is there a way to set up 2FA either on Nginx Proxy Manager side or on, e.g., the 'arr suite of apps?
You could look into apps like authelia, keycloak, authentic, etc.
I have a Synology NAS (my humble server) would that work with it too??? For example the DSM page (which I don’t have exposed).
Synology’s DSM has built-in MFA support, though it also has some features for external identity management. I don’t think Keycloak and so on would be compatible though.
authelia
Ah that sounds like exactly what I’m looking for, actually. Thanks. Any tutorial you have that you can recommend?
I usually recommend this one. There’s a section for NPM you’ll find useful.