I have a Chateau 5G ax (RouterOS 7) with two SSIDs - one for 2.4GHz and one for 5GHz. It currently is setup so that users connect with a pre-shared key. I want to instead have users authenticate with Active Directory credentials. I have a RADIUS proxy running in a VM, and want to have the Chateau use the RADIUS proxy for authenticating users. I've been trying to get that to work for around a month, but haven't had any luck. Some of the materials I used for reference:

• viewtopic.php?t=144467
• viewtopic.php?t=191120
• https://mivilisnet.wordpress.com/2018/1 ... indows-ad/
• viewtopic.php?t=187512

From the limited testing that I've done so far, the mode=dynamic-keys and eap-methods=passthrough don't appear to work anymore. They aren't available via GUI on my end. When I try to use them from the command line, I receive error messages. Many configuration options mentioned in previous tutorials and threads I've seen online aren't available with WiFi Wave2 security profile.

Has this been done with newer RouterOS 7 devices (using Wave2 wireless) before? Something tells me that I'm missing something obvious. I'm still reviewing the settings on the Chateau. I can also post my current configuration here if necessary.

I have noticed the same thing. I can't find any reference to the eap-methods=passthrough being removed, or how to work around it. No matter what I have been doing, I cannot seem to make this thing call the radius server.

But where is it @holvoetn

viewtopic.php?p=893708&hilit=holvoetn+p ... h#p1015185

There is no eap-methods=passthrough in Wifi, if eap authentication methods are used, AP will use passthrough.
Properties related to EAP, are only relevant to interfaces in station mode. APs delegate (passthrough) EAP authentication to the RADIUS server.
https://help.mikrotik.com/docs/display/ROS/WiFi
You can find example with EAP and Radius server here: https://help.mikrotik.com/docs/display/ ... Manager+v5