3.28.27. AutoMPPEKeys Previous topic Parent topic Child topic Next topic

Some NASs, PPoE, VPDN and wireless clients require MPPE keys in the Access- Accept message. If this AuthBy is doing MS-CHAP V1 authentication with a plaintext password, then setting this optional parameter will force Radiator to automatically reply with MS-CHAP-MPPE-Keys computed from the plaintext password. If this AuthBy is doing MS-CHAP V2 authentication with a plaintext password, then setting this optional parameter will force Radiator to automatically reply with MS-MPPE-Send-Key and MS-MPPE-Recv-Key computed from the plaintext password. Has no effect with encrypted passwords. Has no effect unless there is a User-Password check item for the user. Defaults to no automatic MS-CHAP-MPPE-Keys.
Tip
This option is almost always necessary in the outer Handler for PEAP, TTLS, TLS and other TLS based protocols to set the access points encryption keys correctly.