21 Sep
2015
21 Sep
'15
10:45 a.m.
Hi,
Another use case I could think of is that the remote RADIUS server does not accept PAP authentications. I remember that the Microsoft RADIUS (NPS?) did only accept PEAP by default, it could be configured to accept MSCHAPv2 as well, but I don't remember we ever could make it to accept PAP. But I don't think this is the reason here, since it doesn't accept TTLS.
making NPS accept PAP requests is quite easy - its part of the connection policy. why you'd want to do such a thing is another matter altogether....the server makes it quite clear that its a dangerous thing to do when you do enable PAP are you sure...are you really sure? ;-) alan