Skip to main content

MIKRO001 - MikroTik Authentication Failed

Agent error code #MIKRO001 indicates that the MikroTik device rejected the credentials supplied by the Knocknoc agent. The REST endpoint returned HTTP 401 Unauthorized.

Common causes include:

  • The Username or Password in the Knocknoc backend is wrong
  • The user account has been disabled or removed in RouterOS
  • The password was rotated in RouterOS but the Knocknoc backend was not updated
  • The user is restricted by Allowed Address and the agent is dialling from an IP not on that list

Steps to Resolve

Verify the Credentials

  1. From the host running the Knocknoc agent, run: curl -ku '<user>:<pass>' https://<router-host>/rest/system/resource
  2. If you also receive HTTP 401, the credentials are wrong or the user is disabled
  3. In RouterOS, open System > Users > Users and confirm the account exists and is not disabled

Reset the Password

  1. In RouterOS, select the service user under System > Users > Users
  2. Click Password and set a new value
  3. Update the Password field in the Knocknoc backend with the new value
  4. Save the backend and retry

Check Allowed Address Restrictions

  1. Open the service user in RouterOS
  2. If Allowed Address is set, confirm the agent host's IP is included
  3. Add the agent's IP if missing, or clear the field to allow any source

Still Having Issues?

We can help you out, contact us at support@knocknoc.io.

Back to top