User's Guide
AirTight Management Console Configuration
123
IMPORTANT: If a VLAN is configured with a static IP address, then configure the VLAN from the CLI.
If you want to customize the VLANs to be monitored for one or more specific devices to which a device
template is applied, you can do it using the Devices > Device Properties. In order to override the
additionally monitored VLANs, you must select the Allow Device Specific Customization check box.
Device Password
You can manage the password for the AirTight device Command Line Interface (CLI) user 'config' from
the device template. By defining a password in the device template, you can manage the password for a
group of devices without having to change it on each device separately. The password should be at least
6 characters long and it cannot contain spaces or your login ID.
You must specify the new password for the 'config' user. Confirm the new password before saving. The
new password is applied on all the devices associated with the device template.
Device Access Logs
AirTight Management Console provides you with a functionality to send the sensor access logs to the
Syslog server. This functionality is useful for audit purposes and can be enabled or disabled for a device
template. If enabled, specify Syslog server IP/Hostname to which the access logs are to be sent.
Offline Configuration
This feature provides some security coverage even when there is no connectivity between an AirTight
device and the server. The feature is relevant to an AirTight device functioning as a sensor. The sensor
provides some device classification and prevention capabilities when it is disconnected from the server.
The sensor also raises events, stores them, and pushes them back to the server on reconnection. To
enable this feature select Enable offline mode.
In the time after which, if the sensor does not receive any communication from the Server and Enable
offline Sensor mode is enabled, the sensor switches to the offline mode.(Minimum: 5 minutes; Maximum:
60 minutes; Default: 15 minutes)
There are three sub-sections under Offline Configuration
1.
AirTight Device Parameters: In AirTight Device Parameters section, you can specify the following.
Number of APs to be stored: Maximum number of AP identities that the device will store in the
Offline mode (Default: 128).
Number of Clients to be stored: Maximum number of client identities that the device will store in
the Offline mode (Default: 256).
Number of events to be stored: Maximum number of raised events that the device will buffer in
the Offline mode (Default: 256). This is maintained as a cyclic buffer. That is, if the events raised
exceed this limit, the oldest events are overwritten. The buffered events are transferred to the
console when the device reconnects to the server.
Number of intrusion prevention records:Maximum number of prevention records that the sensor
will buffer in Offline mode (Default:256). This is maintained as cyclic buffer. If the records exceed
this limit, the oldest records are overwritten. The buffered records are transferred to the console
when the device reconnects to the server.
2.
Device Classification Policy: Specify how the sensor should classify APs and client devices when it
is not connected to the server.
Configure the AP classification policy the following way.
If you want to classify networked APs as rogue APs, select the Move networked APs to check
box and select the Rogue option from the drop-down list next to this check box.