Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

EAP-MS-CHAP-V2 Authentication Protocol

 

EAP-MS-CHAP-V2 (Microsoft Challenge-Handshake Authentication Protocol version 2) is a mutual authentication method that supports password-based user or computer authentication. During the EAP-MS-CHAP v2 authentication process, both the client and the RADIUS server must prove that they have knowledge of the user's password for authentication to succeed. Mutual authentication is provided by including an authenticator packet returned to the client after a successful server authentication.

EAP-MS-CHAP-V2 is typically used inside a TLS tunnel created by TTLS or PEAP.

By default, the EAP-MS-CHAP-V2 password protocol is available for use by the Native and UNIX authentication methods. Support for the EAP-MS-CHAP-V2 protocol is discussed in the eap.ini file in the SBR Carrier Reference Guide.