<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7UugSAFOkta Classic EngineMulti-Factor AuthenticationAnswered2024-04-12T21:36:06.000Z2017-02-09T05:42:18.000Z2017-02-09T05:42:18.000Z
j5v7c likes this.

  • bogdan.andrisan1.4534936759044734E12 (Okta, Inc.)

    Hello,

     

    The MSCHAPv2 protocol is not yet supported and although it is in the works, we do not have an ETA of its release.

     

    Thank you,

    Bogdan Andrisan.
    Expand Post

  • Wils (Okta, Inc.)

    Hi Spiros,

     

    Are you asking about OMM's WiFi profiles? Or something else? Just want to make sure we get you the correct information. 

     

    If you are talking about OMM WiFi profiles, we have an EA feature which will allow you to use PEAP MS-CHAPv2 based connections. See this guide for requirements and caveats: https://help.okta.com/en/prod/Content/Topics/Mobile/Okta_Mobile_WiFi_Profiles.htm

     

    Thanks,

    Wils
    Expand Post

  • 14hrk (14hrk)

    Hi Wils

     

    No this is required for ISE radius to MFA radius proxy communication to allow users to reset their passwords upon expiry.

    The MFA server has to be MSCHAPv2 capable.

  • 2urjd (2urjd)

    Any update on this being supported?  This causes quite some confusion for users connecting to our VPN with expired credentials.
This question is closed.
Loading
Does okta support MS-CHAPv2 pritocol or capble?