I assume the EAP method used is based on negotiation between client and Radius server.
At least I only used EAP method = “passthrough” for WPAx-EAP on a WLAN wifi interface. So there are no other EAP method setting in the security profile of that router
The RADIUS communication can be logged with topic “radius”.
Working radius servers used so far are FreeRadius, Draytek router radius, Synology NAS radius, and eventually ROS 7 User Manager 5, with quite some learning curve.
And leading to NTRadPing tool for testing and simulating a client.
http://forum.mikrotik.com/t/new-user-manager-in-routeros-v7/135338/1
The documentation of ROS 7 User Manager V5 is limited and yet incomplete. https://help.mikrotik.com/docs/display/ROS/Enterprise+wireless+security+with+User+Manager+v5
MSCHAPv2 should be part of the inner-auth only. (FreeRadius is fully configurable on this, and has very extensive logging on the server console, e.g. outer-auth and inner-auth methods)
But the radius debug packet log in ROS is also very extensive: http://forum.mikrotik.com/t/new-user-manager-in-routeros-v7/135338/1