I'm able to successfully authenticate with a 802.1x server using RouterOS on a bare interface, but once that interface is a part of a bridge (with default settings) I cannot successfully complete the EAPOL process. It seems to never get to the TLSv1 packet exchange, but I do see the identity request and response.
I have pcaps that I'll clean up soon, but curious if anyone else has tried this or can reproduce it.
If you are wondering why is this interface on a bridge, it lets me handle a situation of stripping VLAN 0 (due to 802.1p priority tagging without VLAN) with VLAN Filtering so I can utilize standard IP features including DHCP, etc. I have to be able to handle those tagged frames inbound to the Mikrotik, but not produce them.
ROS version 4.45.2