I believe the second NIC is shut down. I don't have the interface brought up in the OS. Note that this is only for EAP tunnel authentication. We also have an SSID that just has a webpage that sends a PAP authentication packet to the server. This is then authenticated against LDAP. This works just fine.