2.2.2.2.58 AuthRestrictions
The AuthRestrictions key is used to specify the authentication protocols configured for the RRAS entry. This key is optional.<223> If the key is present, the value is a decimal number used as a bit field. The bits are defined in the following table.
|
Bit number (From LSB) |
Authentication Protocol |
Meaning |
|---|---|---|
|
4 |
Password Authentication Protocol (PAP) [RFC1334] |
0 – Do not negotiate PAP 1 – Negotiate PAP. |
|
5 |
Shiva Password Authentication Protocol (SPAP) [RFC1334] |
0 – Do not negotiate SPAP. 1 – Negotiate SPAP |
|
6 |
MD-5 Challenge Handshake Protocol (CHAP) [RFC2433] |
0 – Do not negotiate MD5-CHAP. 1 – Negotiate MD5-CHAP. |
|
7 |
Microsoft Challenge Handshake Protocol Version 1 (MSCHAPv1) [RFC2433] |
0 – Do not negotiate MSCHAPv1. 1 – Negotiate MSCHAPv1. |
|
8 |
Extensible Authentication Protocol (EAP) [RFC2284] |
0 – Do not negotiate EAP. 1 – Negotiate EAP. |
|
10 |
Microsoft Challenge Handshake Protocol Version 2 (MSCHAPv2) [RFC2759] |
0 – Do not negotiate MSCHAPv2. 1 – Negotiate MSCHAPv2. |
|
11 |
Microsoft Challenge Handshake Protocol (Windows 95 operating system compatible MSCHAP) |
0 – Do not negotiate Windows 95 compatible MSCHAP. 1 – Negotiate Windows 95 compatible MSCHAP.<224> |
|
12 |
Machine certificate authentication method for IKEv2 [RFC4306] |
0 – Do not negotiate machine certificate authentication method for IKEv2 tunnels. 1 – Negotiate machine certificate authentication method for IKEv2 tunnels.<225> |
|
13 |
Preshared key authentication method for IKEv2 [RFC4306] |
0 – Do not negotiate preshared key authentication method for IKEv2 tunnels. 1 – Negotiate preshared key authentication method for IKEv2 tunnels.<226> |