
‘Rogue Classification’ means the process of detecting the presence of a Rogue AP and determining which type it represents. The rogue AP classification algorithms allow the system to accurately differentiate between threatening ‘rogue’ APs installed on the Local network and nearby ‘interfering’ APs. Once classified as rogue, these APs can be automatically disabled through both the wireless and wired networks. Administrators are also notified of the presence of rogue devices, along with the precise physical location on a floor plan, so that the rogue device can be removed from the network.
Once classification is complete, ‘Rogue Containment’ refers to the Aruba system taking active action against the Rogue AP, if it is configured to do so. Aruba wireless systems are often configured to detect but not to automatically contain rogue devices, and can be set to different thresholds. Most organizations do not want to take the risk of having the system inadvertently contain APs that may be legitimately part of another business or home. After detecting and alerting, the network administrator can confirm the rogue APs location, and either mark the AP as “known interfering” or choose to manually contain the AP.
Automatic protection for users is often enabled. This prevents
Campus Wireless Networks Validated Reference Design Version 3.3 Design Guide | Mobility Controller Configuration 53 |