Client Authentication
Any legacy protocol may be tunnelled (PAP, CHAP, MSCHAP, MSCHAP-2)
EAP may be tunnelled (EAP in EAP)
Client may also authenticate with certificate during TLS handshake
Challenge-based password protocols are secured against replay by using PRF to generate challenge material