I'm configuring FSR in my WLAN and I think I have it right, I'm just a little confused about some of the log messages I'm seeing.
All of my AP's and MN's are registered with the WLSM.
I have my AP's configured to use both WPA and CCKM for key-management:
authentication key-management wpa cckm
I have a mixture of 350-series and CB21AG clients. In the ACU on the 350 clients I've selected both "WPA" and "Allow Fast Roaming (CCKM)". In the ADU on the CB21AG clients there is no separate box for CCKM so I've selected "WPA" with LEAP as the "EAP method".
The AP logs show the CB21AG clients associating with "KEY_MGMT[WPA]". The CB21AG Install and Config guide states "Fast roaming is enabled automatically for LEAP-enabled CB21AG and PI21AG clients using WPA but must be enabled on the access point" so I assume they're set correctly and using FSR.
My confusion comes from the AP logs showing the 350 clients sometimes associating with "KEY_MGMT[CCKM]" and sometimes with "KEY_MGMT[CCKM FastRoaming]". Is there a difference?
Do I understand correctly in thinking that CCKM is required for FSR and is in addition to WPA (in other words, configuring them both on the AP is what I want to do for FSR)? Is it correct that WPA can be configured on 350 clients without CCKM but that the client will then do a full LEAP authentication when it roams (not what I want, so I need to manually select CCKM on those clients)?