Using cckm for authenticated clients – Rockwell Automation 1783-WAPxxx Stratix 5100 Wireless Access Point User Manual User Manual

356

Rockwell Automation Publication 1783-UM006A-EN-P - May 2014

Chapter 12

Configuring Authentication Types

Using CCKM for Authenticated Clients

By using Cisco Centralized Key Management (CCKM), authenticated client
devices can roam from one access point to another without any perceptible delay
during reassociation. An access point on your network provides Wireless Domain
Services (WDS) and creates a cache of security credentials for CCKM-enabled
client devices on the subnet. The WDS access point’s cache of credentials
dramatically reduces the time required for reassociation when a CCKM-enabled
client device roams to a new access point. When a client device roams, the WDS
access point forwards the client’s security credentials to the new access point, and
the reassociation process is reduced to a two-packet exchange between the
roaming client and the new access point. Roaming clients reassociate so quickly
that there is no perceptible delay in voice or other time-sensitive applications.

• See the

Assigning Authentication Types to an SSID on page 359

for

instructions on enabling CCKM on your access point.

• See the

Configuring Access Points to Use the WDS Device on page 390

for detailed instructions on setting up a WDS access point on your wireless
LAN.

This figure shows the reassociation process by using CCKM.

Figure 95 - Client Reassociation by Using CCKM

IMPORTANT

The RADIUS-assigned VLAN feature is not supported for client devices that
associate by using SSIDs with CCKM enabled.

88964

Reassociation request

Reassociation response

Pre-registration request

Pre-registration reply

Roaming client

device

Access point

WDS Device - Router/

Switch/AP

Authentication server

Wired LAN