For peap with ms-chapv2 are the MPPE keys derived from ms-chap or TLS material?

mark.leese at mark.leese at
Sat Sep 6 22:35:55 CEST 2014


This is hopefully a simple question and so apologises if I'm being stupid :-) When using PEAP with an inner method of MS-CHAPv2, are the encryption keys (MS-MPPE-Recv-Key and MS-MPPE-Send-Key) derived from the MS-CHAP material or the TLS tunnel information? I always thought it was from the TLS tunnel, just like RFC3079 says it is when using EAP-TLS, but I could not find a definitive answer for PEAP.

Thanks in advance,


Scanned by iCritical.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Freeradius-Users mailing list