We've setup a WDS Environment based on IOS Access Point Aironet 1130. We have defined a Primary WDS (Prio 250) and a Backup WDS (Prio 240) and the clients are authenticating with LEAP/WEP128 and EAP-FAST(TKIP). Everything works as expected when it comes to a failure of the Primary WDS. So, the Backup WDS takes over all AP's. The concern I've is the fact that all clients disconnects during the time of takeover of the Backup WDS (and later on when the switch back to the Primary WDS) and all clients have also to reauthenticate. Is this an expected behavior ? What makes everything worse is the fact that some clients have to be reset so that they reauthenticate correctly and the correct IP Address is shown in the "show dot11 associations" command. Is there any possibility to overcome the fact that the clients have to reauthenticate ? Would it make sense to define the infrastructure AP's belonging to the WDS also as an AAA clients against an ACS so that during the takeover-time of the WDS all associated clients could authenticate via the associated AP instead of waiting for the readiness of the WDS ?
Any suggestion would be welcome.