Wi-Fi Easy Connect™ (Dpp); Wireless Network Management; Radio Resource Measurement - Espressif ESP32-S2 Programming Manual

Chapter 4. API Guides
it is only the management frames which contain this vendor-specific IE that will be processed. In ESP32-S2,
esp_wifi_set_vendor_ie()
tasks.
4.33.15 Wi-Fi Easy Connect™ (DPP)
TM
Wi-Fi Easy Connect (or Device Provisioning Protocol) is a secure and standardized provisioning protocol for
configuration of Wi-Fi Devices. More information can be found on the API reference page esp_dpp.
WPA2-Enterprise
WPA2-Enterprise is the secure authentication mechanism for enterprise wireless networks. It uses RADIUS server
for authentication of network users before connecting to the Access Point. The authentication process is based on
802.1X policy and comes with different Extended Authentication Protocol (EAP) methods like TLS, TTLS, PEAP
etc. RADIUS server authenticates the users based on their credentials (username and password), digital certificates or
both. When ESP32-S2 in Station mode tries to connect to an AP in enterprise mode, it sends authentication request
to AP which is sent to RADIUS server by AP for authenticating the Station. Based on different EAP methods, the
parameters can be set in configuration which can be opened using idf.py menuconfig. WPA2_Enterprise is
supported by ESP32-S2 only in Station mode.
For establishing a secure connection, AP and Station negotiate and agree on the best possible cipher suite to be used.
ESP32-S2 supports 802.1X/EAP (WPA) method of AKM and Advanced encryption standard with Counter Mode
Cipher Block Chaining Message Authentication protocol (AES-CCM) cipher suite. It also supports the cipher suites
supported by mbedtls if USE_MBEDTLS_CRYPTO flag is set.
ESP32-S2 currently supports the following EAP methods:
• EAP-TLS: This is certificate based method and only requires SSID and EAP-IDF.
• PEAP: This is Protected EAP method. Username and Password are mandatory.
• EAP-TTLS: This is credentials based method. Only server authentication is mandatory while user authentication
– PAP: Password Authentication Protocol.
– CHAP: Challenge Handshake Authentication Protocol.
– MSCHAP and MSCHAP-V2.
Detailed information on creating certificates and how to run wpa2_enterprise example on ESP32-S2 can be found in
wifi/wifi_enterprise.

4.33.16 Wireless Network Management

Wireless Network Management allows client devices to exchange information about the network topology, including
information related to RF environment. This makes each client network-aware, facilitating overall improvement in
the performace of the wireless network. It is part of 802.11v specification. It also enables client to support Network
assisted Roaming. - Network assisted Roaming: Enables WLAN to send messages to associated clients, resulting
clients to associate with APs with better link metrics. This is useful for both load balancing and in directing poorly
connected clients.
Current implementation of 802.11v includes support for BSS transition management frames.

4.33.17 Radio Resource Measurement

Radio Resource Measurement (802.11k) is intended to improve the way traffic is distributed within a network. In a
wireless LAN, each device normally connects to the access point (AP) that provides the strongest signal. Depending on
the number and geographic locations of the subscribers, this arrangement can sometimes lead to excessive demand
on one AP and underutilization of others, resulting in degradation of overall network performance. In a network
conforming to 802.11k, if the AP having the strongest signal is loaded to its full capacity, a wireless device can be
moved to one of the underutilized APs. Even though the signal may be weaker, the overall throughput is greater
because more efficient use is made of the network resources.
Espressif Systems
and esp_wifi_set_vendor_ie_cb()
1538
Submit Document Feedback
are responsible for this kind of
Release v4.4