PEAP-GTC and roaming

Unanswered Question
Feb 28th, 2008
User Badges:

Is it possible to use PEAP-GTC without re-entering credentials after the client roams?


Configuration is as follows


RSA RADIUS, SecurID tokens

WLC 2106 4.2, LAP1131

Dell 630, Intel 3945abg, Windows XP

Juniper Odyssey 4.52

WPA TKIP

CCKM enabled on the WLAN


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Richard Atkin Sun, 03/02/2008 - 09:41
User Badges:
  • Silver, 250 points or more

There's a caching option under the "Security" tab on the WLC that's supposed to achieve this goal, although I've never used it myself.


Regards,

Richard

dennischolmes Sun, 03/02/2008 - 13:02
User Badges:
  • Gold, 750 points or more

The checkbox that Rik is referring to is "credentials caching enabled". This caches credentials on all access points local to the client to increase roaming times by forcing only a reassociation and not a reauthentication. Reassociations are much faster than reassociations and reauthentications.

mirek.tichy_2 Mon, 03/03/2008 - 00:08
User Badges:

Hi, thanks a lot. I know the "credentials caching" checkbox but it was removed in 4.2 version.

coolccnp Tue, 03/18/2008 - 12:34
User Badges:

Everything I know of PEAP it does not support Fast Secure Roaming (CCKM).

sringer Tue, 04/29/2008 - 11:51
User Badges:

similar setup here...


PEAP

RADIUS

SecurID tokens

Odyssey 4.7

4402 4.1.171

LAP1131

WPA/WPA2 TKIP (no CCKM)


Clients roam just fine, no need to re-authenticate. Using 4.1.171, but without the credentials caching or CCKM,

Actions

This Discussion

 

 

Trending Topics - Security & Network