This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
- Community
- RUCKUS Technologies
- RUCKUS Lennar Support
- Community Services
- RTF
- RTF Community
- Australia and New Zealand – English
- Brazil – Português
- China – 简体中文
- France – Français
- Germany – Deutsch
- Hong Kong – 繁體中文
- India – English
- Indonesia – bahasa Indonesia
- Italy – Italiano
- Japan – 日本語
- Korea – 한국어
- Latin America – Español (Latinoamérica)
- Middle East & Africa – English
- Netherlands – Nederlands
- Nordics – English
- North America – English
- Poland – polski
- Russia – Русский
- Singapore, Malaysia, and Philippines – English
- Spain – Español
- Taiwan – 繁體中文
- Thailand – ไทย
- Turkey – Türkçe
- United Kingdom – English
- EOL Products
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- RUCKUS Forums
- EOL Products
- ZD
- Re: Users have to re-authenticate
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Users have to re-authenticate
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-13-2014 05:19 AM
Hi,
We have a Zonedirector that's broadcasting 2 SSID, one for guests and one for internals that has Web Authentication configured with our AD.
We've had several users complaining that they lose connection and have to re-login to the portal. In the log we see the following entry when it's happening:
2014/02/13 13:40:45 Low User[user1] fails to join WLAN[Internal] from AP[ap01]
2014/02/13 13:49:27 Low AP[ap1] radio [11g/n] detects User user1 in WLAN[Internal] roams from AP[ap1]
2014/02/13 13:49:27 Low AP[ap1] radio [11a/n] detects User user1 in WLAN[Internal] roams out to AP[ap01]
2014/02/13 13:40:45 Low User[user1] of WLAN[Internal] is authorized at AP[ap01]
It looks like it's roaming between the radios and then fails to join. Is there any way to find out why it's failing?
We have a Zonedirector that's broadcasting 2 SSID, one for guests and one for internals that has Web Authentication configured with our AD.
We've had several users complaining that they lose connection and have to re-login to the portal. In the log we see the following entry when it's happening:
2014/02/13 13:40:45 Low User[user1] fails to join WLAN[Internal] from AP[ap01]
2014/02/13 13:49:27 Low AP[ap1] radio [11g/n] detects User user1 in WLAN[Internal] roams from AP[ap1]
2014/02/13 13:49:27 Low AP[ap1] radio [11a/n] detects User user1 in WLAN[Internal] roams out to AP[ap01]
2014/02/13 13:40:45 Low User[user1] of WLAN[Internal] is authorized at AP[ap01]
It looks like it's roaming between the radios and then fails to join. Is there any way to find out why it's failing?
7 REPLIES 7
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-25-2014 08:03 AM
Primož Marinšek is correct, though "spoiled children" might be a bit strong, but essentially correct. In this situation we have to separate two things, 802.11 connection state and the system authorization state.
As noted earlier if you do not have the grace period set, every time a client disconnect, the system will clear the client's authorization state, so when it comes back in it has to re-login, to prove it's identity. With the grace period set the next question to address is the client 802.11 connection/disconnection state.
Unfortunately there is no standards for client behavior, only some general rule power level, data rates and medium access protocol and a few others. Clients have different roaming algorithm, some may look at only signal, some take into account datarate, retries, beacon health, security and so on. To add to that, in a dual band environment the client now has a choice between band with the exact same settings. A good client behavior, give all things being equal should chose the band that has more bandwidth, 5 GHz for example, but generally speaking 5 GHz coverage may vary a lot more then 2.4 especially where the channels goes from the lower/mid band to the higher band. Client may not like the 5 GHz for that reason. Client behavior will vary between chipset and in some cases even with the same chipset different laptop vendor can also add their own flavor as well, so generally client behavior is unpredictable.
Some client allow user to control some of these behavior, Intel dualband client for example allows you to set the roaming aggressiveness, not what it uses to decide to roam but how aggressive it uses the algorithm. It also allow you to set a band preference, but even then it's a preference and not a strict mandate to stay on a single band. That's just the surface, with this one example, the radio can be controlled by Windows (WLAN services), Intel's Proset or a third party supplicant like Odyssey client software.
Given the log above, and assuming that the client is using windows supplicant, I would suggest running a test wlan that is only broadcasting on a single band, on the 2.4 or 5 GHz radio if the coverage is there and see if the client is still have a problem with excessive roaming.
As noted earlier if you do not have the grace period set, every time a client disconnect, the system will clear the client's authorization state, so when it comes back in it has to re-login, to prove it's identity. With the grace period set the next question to address is the client 802.11 connection/disconnection state.
Unfortunately there is no standards for client behavior, only some general rule power level, data rates and medium access protocol and a few others. Clients have different roaming algorithm, some may look at only signal, some take into account datarate, retries, beacon health, security and so on. To add to that, in a dual band environment the client now has a choice between band with the exact same settings. A good client behavior, give all things being equal should chose the band that has more bandwidth, 5 GHz for example, but generally speaking 5 GHz coverage may vary a lot more then 2.4 especially where the channels goes from the lower/mid band to the higher band. Client may not like the 5 GHz for that reason. Client behavior will vary between chipset and in some cases even with the same chipset different laptop vendor can also add their own flavor as well, so generally client behavior is unpredictable.
Some client allow user to control some of these behavior, Intel dualband client for example allows you to set the roaming aggressiveness, not what it uses to decide to roam but how aggressive it uses the algorithm. It also allow you to set a band preference, but even then it's a preference and not a strict mandate to stay on a single band. That's just the surface, with this one example, the radio can be controlled by Windows (WLAN services), Intel's Proset or a third party supplicant like Odyssey client software.
Given the log above, and assuming that the client is using windows supplicant, I would suggest running a test wlan that is only broadcasting on a single band, on the 2.4 or 5 GHz radio if the coverage is there and see if the client is still have a problem with excessive roaming.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-26-2014 12:26 AM
If you don't like my "spoiled children" analogy, how about a "rebellious teenager"?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
02-28-2014 08:25 AM
lol, more like "teenagers", there are lots of them and they tend to give me headache, which I am looking forward to in a few years as my kids hit the teen years.
Labels
-
DHCP
1 -
IP lease
1 -
license snmp
1 -
Proposed Solution
1 -
Ruckus
1 -
server
1 -
VLAN
1 -
w
1 -
wap
1 -
zone director
1 -
ZoneDirector
1
