Maybe someone can help me this: I installed a WLAN, consisting of three APs (1200), with WDS. The Clients can authenticate with EAP-TLS and valid certificates to a (free)radius-server. The APs authenticate with LEAP at the same radius and are shown as registered at the master WDS, but still every roam leeds to a new authentication at the radius. Did I miss something here? Do I need additional hardware for fast roaming here?