Here are the notes from Uldis Cernevskis presentation at the US MUM in Pittburgh, PA.

MikroTik CAPsMAN is a wireless provisioning and management system for MikroTIk wireless AP’s.

Controlled Access Point system Manager (CAPsMAN) allows centralization of wireless network management and if necessary, data processing. When using the CAPsMAN feature, the network will consist of a number of ‘Controlled Access Points’ (CAP) that provide wireless connectivity and a ‘system Manager’ (CAPsMAN) that manages the configuration of the APs, it also takes care of client authentication and optionally, data forwarding.

When a CAP is controlled by CAPsMAN it only requires the minimum configuration required to allow it to establish connection with CAPsMAN. Functions that were conventionally executed by an AP (like access control, client authentication) are now executed by CAPsMAN. The CAP device now only has to provide the wireless link layer encryption/decryption.

There is not narrative, just a brain dump.

CAPsMAN Features

  • CapsMan is a centralized management of RouterOS AP’s
  • Dual band support
  • provisioning
  • Certificate support
  • Radius MAC Authentication
  • Custom config support
  • Layer 3 management of off site AP’s

Requirements

  • Newest version 6 version
  • Wireless-fp package installed

Setup

  • Enable CAPSMAN Service
  • Create abridge
  • Add IP to bridge
  • Create CAPsMAN Configuration
  • Create provisioning rule
  • Enable CAP mode on AP’s

Other Features

  • Works on MAC layer 2 or UDP via layer 3
  • CAP attempts to contact a CAPsMAN and is listed in the CAP list