242 Operation
Chapter 5 - Command Line Interface
Default Setting
Disabled
Command Mode
Interface Configuration (Wireless-VAP)
Command Usage
• Each time a client roams to another AP it has to be fully re-authenticated. This authentication
process is time consuming and can disrupt applications running over the network. WPA2 includes
a mechanism, known as pre-authentication, that allows clients to roam to a new AP and be
quickly associated. The first time a client is authenticated to a wireless network it has to be fully
authenticated. When the client is about to roam to another AP in the network, the AP sends
pre-authentication messages to the new AP that include the client’s security association
information. Then when the client sends an association request to the new AP, the client is known
to be already authenticated, so it proceeds directly to key exchange and association.
• To support pre-authentication, both clients and APs in the network must be WPA2 enabled.
• Pre-authentication requires all APs in the network to be on the same IP subnet.
Example
Enterprise AP(if-wireless g: VAP[0])#wpa-pre-shared-key ASCII agoodsecret
Enterprise AP(if-wireless g: VAP[0])#