Enabling Rogue Access Point Detection; Using The Gui To Enable Rogue Access Point Detection - Cisco SD2008T-NA Configuration Manual

Enabling Rogue Access Point Detection

Enabling Rogue Access Point Detection
After you have created an RF group of controllers, you need to configure the access points connected to
the controllers to detect rogue access points. The access points will then check the beacon/
probe-response frames in neighboring access point messages to see if they contain an authentication
information element (IE) that matches that of the RF group. If the check is successful, the frames are
authenticated. Otherwise, the authorized access point reports the neighboring access point as a rogue,
records its BSSID in a rogue table, and sends the table to the controller.

Using the GUI to Enable Rogue Access Point Detection

Follow these steps to enable rogue access point detection using the GUI.
Step 1 Make sure that each controller in the RF group has been configured with the same RF group name.
Note
Step 2 Click Wireless to access the All APs page (see
Figure 10-5 All APs Page
Cisco Wireless LAN Controller Configuration Guide
10-12
The name is used to verify the authentication IE in all beacon frames. If the controllers have
different names, false alarms will occur.
Chapter 10 Configuring Radio Resource ManagementWireless Device Access
Figure 10-5).
OL-1926-06OL-9141-03