2.2.2.2.58 AuthRestrictions

The AuthRestrictions key is used to specify the authentication protocols configured for the RRAS entry. This key is optional.<221> If the key is present, the value is a decimal number used as a bit field. The bits are defined in the following table.

Bit number (From LSB)

Authentication Protocol

Meaning

4

Password Authentication Protocol (PAP) [RFC1334]

0 – Do not negotiate PAP

1 – Negotiate PAP.

5

Shiva Password Authentication Protocol (SPAP) [RFC1334]

0 – Do not negotiate SPAP.

1 – Negotiate SPAP

6

MD-5 Challenge Handshake Protocol (CHAP) [RFC2433]

0 – Do not negotiate MD5-CHAP.

1 – Negotiate MD5-CHAP.

7

Microsoft Challenge Handshake Protocol Version 1 (MSCHAPv1) [RFC2433]

0 – Do not negotiate MSCHAPv1.

1 – Negotiate MSCHAPv1.

8

Extensible Authentication Protocol (EAP) [RFC2284]

0 – Do not negotiate EAP.

1 – Negotiate EAP.

10

Microsoft Challenge Handshake Protocol Version 2 (MSCHAPv2) [RFC2759]

0 – Do not negotiate MSCHAPv2.

1 – Negotiate MSCHAPv2.

11

Microsoft Challenge Handshake Protocol (Windows 95 operating system compatible MSCHAP)

0 – Do not negotiate Windows 95 compatible MSCHAP.

1 – Negotiate Windows 95 compatible MSCHAP.<222>

12

Machine certificate authentication method for IKEv2 [RFC4306]

0 – Do not negotiate machine certificate authentication method for IKEv2 tunnels.

1 – Negotiate machine certificate authentication method for IKEv2 tunnels.<223>

13

Preshared key authentication method for IKEv2 [RFC4306]

0 – Do not negotiate preshared key authentication method for IKEv2 tunnels.

1 – Negotiate preshared key authentication method for IKEv2 tunnels.<224>