Greetings,
I am working on a authentication solution for VPNs to our Mikrotik devices. The configuration uses an external RADIUS server (NPS) which Mikrotik talks to to authenticate against our cloud Active Directory (Azure AD Domain Services). I got it to work with MS-CHAPv2 but it seems that Mikrotik doesn't support EAP authentication for the PPP service.
Am I missing something or is there really no support for EAP with VPN authentication? Seems like quite a security risk to only support MS-CHAPv2 as the best authentication protocol, since it was cracked quite a few years ago.