Can anyone describe how PAP works between ASA and Microsoft NPS for RADIUS authentication and how MS-CHAP is different?
Please don't tell me that PAP sends the password in clear text. I have taken PCAPs and I see no clear text shared secret or passwords being transmitted between the ASA and NPS. I'm trying to understand the risk if I choose to allow PAP so that we can use all Azure MFA options including one-way text message, OATH hardware tokens and mobile app verification code.