This MIB is intended to be implemented on all those
devices operating as Central Controllers (CC), that
terminate the Light Weight Access Point Protocol
tunnel from Cisco Light-weight LWAPP Access Points.

Information provided by this MIB is used to manage
AAA information on the controller.

The relationship between CC and the LWAPP APs
can be depicted as follows:

      +......+     +......+     +......+
      +      +     +      +     +      +
      +  CC  +     +  CC  +     +  CC  +
      +      +     +      +     +      +
      +......+     +......+     +......+
        ..            .             .
        ..            .             .
       .  .            .             .
      .    .            .             .
     .      .            .             .
    .        .            .             .
+......+ +......+     +......+      +......+
+      + +      +     +      +      +      +
+  AP  + +  AP  +     +  AP  +      +  AP  +
+      + +      +     +      +      +      +
+......+ +......+     +......+      +......+
           .              .             .
         .  .              .             .
        .    .              .             .
       .      .              .             .
      .        .              .             .
   +......+ +......+     +......+      +......+
   +      + +      +     +      +      +      +
   +  MN  + +  MN  +     +  MN  +      +  MN  +
   +      + +      +     +      +      +      +
   +......+ +......+     +......+      +......+


The LWAPP tunnel exists between the controller and
the APs.  The MNs communicate with the APs through
the protocol defined by the 802.11 standard.

LWAPP APs, upon bootup, discover and join one of the
controllers and the controller pushes the configuration,
that includes the WLAN parameters, to the LWAPP APs.
The APs then encapsulate all the 802.11 frames from
wireless clients inside LWAPP frames and forward
the LWAPP frames to the controller.

                   GLOSSARY

Access Point ( AP )

An entity that contains an 802.11 medium access
control ( MAC ) and physical layer ( PHY ) interface
and provides access to the distribution services via
the wireless medium for associated clients.  

LWAPP APs encapsulate all the 802.11 frames in
LWAPP frames and sends them to the controller to which
it is logically connected.

Light Weight Access Point Protocol ( LWAPP )

This is a generic protocol that defines the 
communication between the Access Points and the
Central Controller. 

Mobile Node ( MN )

A roaming 802.11 wireless device in a wireless
network associated with an access point. Mobile Node 
and client are used interchangeably. 

Terminal Access Controller Access-Control System 
( TACACS ) 

A remote authentication protocol that is used to 
communicate with an authentication server. 
TACACS allows a remote access server to communicate 
with an authentication server in order to determine 
if the user has access to the network.

Remote Authentication Dial In User Service (RADIUS) 

It is an AAA (authentication, authorization and accounting) 
protocol for applications such as network access or 
IP mobility. It is intended to work in both local and 
roaming situations.

Wireless LAN ( WLAN ) 

It is a wireless local area network, which is the 
linking of two or more computers without using wires. 
It uses radio communication to accomplish the same 
functionality of a wired LAN.

PAP - Password Authentication Protocol
CHAP - Challenge Handshake Authentication Protocol
MD5-CHAP - Message Digest 5 Challenge Handshake Authentication
           Protocol

LSC - Local Significant Certificate

LSC can be used if we want our own public key 
infrastructure (PKI) to provide better security, 
to have control of our certificate authority (CA), 
and to define policies, restrictions, and usages 
on the generated certificates.

REFERENCE

[1] Wireless LAN Medium Access Control ( MAC ) and
Physical Layer ( PHY ) Specifications

[2] Draft-obara-capwap-lwapp-00.txt, IETF Light 
Weight Access Point Protocol