Manualshelf

Network Card User Manual

ManualsBrandsAruba Networks ManualsNetwork CardCampus Wireless Networks Validated Reference Design Version 3.3
51525354555657585960
Campus Wireless Networks Validated Reference Design Version 3.3 | Design Guide Mobility Controller Configuration | 53
‘Rogue Classification’ means the process of detecting the presence of a Rogue AP and determining
which type it represents. The rogue AP classification algorithms allow the system to accurately
differentiate between threatening ‘rogue’ APs installed on the Local network and nearby ‘interfering’
APs. Once classified as rogue, these APs can be automatically disabled through both the wireless and
wired networks. Administrators are also notified of the presence of rogue devices, along with the
precise physical location on a floor plan, so that the rogue device can be removed from the network.
Once classification is complete, ‘Rogue Containment’ refers to the Aruba system taking active action
against the Rogue AP, if it is configured to do so. Aruba wireless systems are often configured to detect
but not to automatically contain rogue devices, and can be set to different thresholds. Most
organizations do not want to take the risk of having the system inadvertently contain APs that may be
legitimately part of another business or home. After detecting and alerting, the network administrator
can confirm the rogue APs location, and either mark the AP as “known interfering” or choose to
manually contain the AP.
Automatic protection for users is often enabled. This prevents “man-in-the-middle” and other attacks
for which signatures are well known. It also detects the use of tools often employed to launch attacks
against targets within the enterprise.