Managing Rogue Devices
Figure 5-45 Rogue Rules > Priority Page
c.
d.
e.
If you want to classify any rogue access points as friendly and add them to the friendly MAC address
Step 6
list, follow these steps:
a.
Figure 5-46 Friendly Rogue > Create Page
b.
c.
d.
Using the CLI to Configure Rogue Classification Rules
Using the controller CLI, follow these steps to configure rogue classification rules.
To create a rule, enter this command:
Step 1
config rogue rule add ap priority priority classify {friendly | malicious} rule_name
Cisco Wireless LAN Controller Configuration Guide
5-90
The rogue rules are listed in priority order in the Change Rules Priority edit box.
Highlight the rule for which you want to change the priority, and click Up to raise its priority in the
list or Down to lower its priority in the list.
Continue to move the rules up or down until the rules are in the desired order.
Click Apply to commit your changes.
Click Security > Wireless Protection Policies > Rogue Policies > Friendly Rogue to access the
Friendly Rogue > Create page (see
In the MAC Address field, enter the MAC address of the friendly rogue access point.
Click Apply to commit your changes.
Click Save Configuration to save your changes. This access point is added to the controller's list
of friendly access points and should now appear on the Friendly Rogue APs page.
Figure
5-46).
Chapter 5
Configuring Security Solutions
OL-17037-01