PEAP-GTC and roaming

mirek.tichy_2 · ‎02-28-2008

Is it possible to use PEAP-GTC without re-entering credentials after the client roams?

Configuration is as follows

RSA RADIUS, SecurID tokens

WLC 2106 4.2, LAP1131

Dell 630, Intel 3945abg, Windows XP

Juniper Odyssey 4.52

WPA TKIP

CCKM enabled on the WLAN

Richard Atkin · ‎03-02-2008

There's a caching option under the "Security" tab on the WLC that's supposed to achieve this goal, although I've never used it myself.

Regards,

Richard

dennischolmes · ‎03-02-2008

The checkbox that Rik is referring to is "credentials caching enabled". This caches credentials on all access points local to the client to increase roaming times by forcing only a reassociation and not a reauthentication. Reassociations are much faster than reassociations and reauthentications.

mirek.tichy_2 · ‎03-03-2008

Hi, thanks a lot. I know the "credentials caching" checkbox but it was removed in 4.2 version.

coolccnp · ‎03-18-2008

Everything I know of PEAP it does not support Fast Secure Roaming (CCKM).

sringer · ‎04-29-2008

similar setup here...

PEAP

RADIUS

SecurID tokens

Odyssey 4.7

4402 4.1.171

LAP1131

WPA/WPA2 TKIP (no CCKM)

Clients roam just fine, no need to re-authenticate. Using 4.1.171, but without the credentials caching or CCKM,