With Encryption Required You Can Still Select PAP, SPAP, or CHAP (227815)

MORE INFORMATION

To configure the Advanced Security Settings of a Dial-Up Networking connection, follow these steps:

1. Right-click the Dial-Up Networking connection, and then click Properties.
2. On the Security tab, click Advanced (Custom Settings), and then click Settings.
3. In the Data Encryption box, click Require encryption(disconnect if server declines).
4. Under Logon Security, click to select the check boxes for the protocols you want to use, and then click OK.

When you click Require encryption(disconnect if server declines), you may click to select the Unencrypted Password (PAP), Shiva Password Authentication Protocol (SPAP), or Challenge Handshake Authentication Protocol (CHAP) check boxes, even though these protocols do not require encryption. In addition, you are required to select at least one of the MS-CHAP protocols or the Extensible Authentication Protocol (EAP).

If you do not select a version of MS-CHAP or EAP, you receive the following error message:

If you select at least one version of MS-CHAP in addition to PAP, SPAP, or CHAP, you receive the following error message: If you click Yes, the connection does not use PAP, SPAP, or CHAP. Since data encryption is required, the connection uses only the versions of MS-CHAP you selected.