I am trying to implement radius client-side code for mac auth with Mikrotik's radius server. As I know till now Mikrotik doesn't support PAP passwords with Mac auth, so trying to implement a CHAP password.
Need little information related to this, which can help me in implementing the same.
How Mirkrotik radius server decrypt chap password radius attribute coming in radius access-request without chap-challenge radius attribute? So, that we can encrypt in a similar way in radius client side.
We tried the following but end up "invalid password" from the radius server.
1. putting client mac address in radius chap password radius attribute.
2. putting md5 hash value of client mac address in radius chap password radius attribute.
3. creating md5 hash from radius message authenticator, id, client mac and putting the same in radius chap password radius attribute.
Please help me understand the same.