I found that you don't need to deauth the client. If you have something like this
airbase-ng -e "there ap" -a "there mac ap" -I 5 -x 500 after about 30-100sec they will slowly lose the connection with the real ap,after that sent out some probes, after about another 1min, it show up on there computer "169.ip". It displays the name of the network as unsceured now instead of wpa.
I'm try to not have to click stuff on the target, but that might have made it connect.
Been try the -P & -C 60 command,but know luck.
Test with 3bars for real ap, and 5bars for fake.
Just some ramblings but if you could get alot of infomation the same as the real ap,windows wireless cleint just might connect to the strongist or annoying ap(being yours).