How to Verify CAC on an AP
Features > Centralized Authentication Control
Confirm CAC is enabled by using the following command. A value of 1 indicates that CAC is enabled.
# cat /sys/module/morse/parameters/enable_cac 1
AP-side CAC log messages
Info level (6) or debug level (7) driver debugging can be enabled with the following commands. # phy=$(ls -d /sys/kernel/debug/ieee80211/phy*) # echo 6 >$phy/morse/logging/cac
or
# echo 7 >$phy/morse/logging/cac
Whenever the CAC threshold changes (i.e. when many stations attempt to associate at the same time, up until most stations have associated and a threshold is no longer being set), messages such as the following are written to the AP’s syslog.
# dmesg|grep -w CAC [ 205.593166] morse_sdio mmc1:0001:2: CAC ARFS=13 period=600 adjust=-2 idx=14 threshold=896 [ 206.523164] morse_sdio mmc1:0001:2: CAC ARFS=11 period=800 adjust=-1 idx=13 threshold=832 [ 206.963164] morse_sdio mmc1:0001:2: CAC ARFS=11 period=400 adjust=-1 idx=12 threshold=768 [ 208.073159] morse_sdio mmc1:0001:2: CAC ARFS=2 period=1000 adjust=4 idx=16 threshold=1024
The fields in these messages are:
- ARFS: authentication request frames received in this period
- period: period over which the ARFS were received (max will be 1 second)
- adjust: change to the threshold index
- idx: new index, which is used to set the new threshold
- threshold: threshold now being advertised in beacons and probe responses