Legal Disclaimer: The resource assets in this website may include abbreviated and/or legacy terminology for HPE Aruba Networking products. See www.arubanetworks.com for current and complete HPE Aruba Networking product lines and names.
Cache Sync for Non-Fast-Roaming Users
Earlier, user cache synchronization included user key information that was exclusively reserved for fast-roaming users like 802.11r 802.11r is an IEEE standard for enabling seamless BSS transitions in a WLAN. 802.11r standard is also referred to as Fast BSS transition. users, OKC Opportunistic Key Caching. OKC is a technique available for authentication between multiple APs in a network where those APs are under common administrative control. Using OKC, a station roaming to any AP in the network will not have to complete a full authentication exchange, but will instead just perform the 4-way handshake to establish transient encryption keys. users, or MPSK Multi Pre-Shared Key. The Cloud Authentication and Policy server enables MPSK in a WLAN network in Aruba Central, to provide seamless wireless network connection to the end-users and client devices. users. However, a need arose for cache synchronization among non-fast-roaming users, such as Captive Portal A captive portal is a web page that allows the users to authenticate and sign in before connecting to a public-access network. Captive portals are typically used by business centers, airports, hotel lobbies, coffee shops, and other venues that offer free Wi-Fi hotspots for the guest users. users and MAC Media Access Control. A MAC address is a unique identifier assigned to network interfaces for communications on a network. authentication users. This need stems from the desire to prevent re-authentication when these users transition from one access point (AP) to another. To address this requirement, cache synchronization between neighboring APs was introduced and has been supported since AOS-10.
In HPE Aruba Networking Wireless Operating System 10, there are these types of cache structures:
-
Key cache structure: This structure is employed for fast-roaming clients.
-
Partial and full Cache structure: This structure is utilized for non-fast-roaming clients.
Cache Classification
To optimize cache distribution, we classify cache entries into three distinct types:
-
Partial roam cache: This cache structure exclusively contains essential information necessary during roaming. For non-fast-roaming users, the partial roam cache is synchronized with neighboring APs.
-
Full roam cache: In addition to the data found in the partial roam cache, the full roam cache includes supplementary station-related state information that might not be immediately required during roaming. The full roam cache entry is consistently available in Key Management Service (KMS) and on the AP to which the client is currently associated.
-
Key cache: This specific cache structure is exclusively employed by fast-roaming users. It houses station keys essential for fast roaming, including Pairwise Master Key (PMK Pairwise Master Key. PMK is a shared secret key that is generated after PSK or 802.1X authentication. ), PMKR0, PMKR1 (per-BSSID), Multi Pre-Shared Key (MPSK), and comprehensive full roam cache information.