User's Guide
Table Of Contents
- About This Guide
- Introduction
- AirTight Management Console Configuration
- Configure Language Setting
- Configure Time Zone and Tag for Location
- User Management
- User Authentication
- Wireless Intrusion Prevention System
- Manage WiFi Access
- Configure Device - Server Communication Settings
- Manage Policy Templates
- Manage Authorized WLAN Policy
- View High Availability Status for Server
- View/Upgrade License Details
- Manage Look and Feel of Reports
- Configure NTP
- Configure RF Propagation Settings
- Configure Live RF View Setting
- Configure Location Tracking
- Manage Auto Location Tagging
- Set up and Manage Server Cluster
- Manage Vendor OUIs
- Manage Device Template
- Configure SMTP Settings
- View System Status
- Upgrade Server
- Configure Auto Deletion Settings
- Manage Audit Log Settings
- Configure Integration with Enterprise Security Management Servers
- Manage WLAN Integration
- Manage AirTight Mobile Clients
- AirTight Mobile Settings
- Manage AirTight Mobile Clients
- Add AirTight Mobile Group Manually
- Edit AirTight Mobile Group
- Attach Policy to AirTight Mobile Group
- Overwrite Existing Policy for AirTight Mobile Group
- Detach Policy from AirTight Mobile Group
- View AirTight Mobile Group Policy in HTML Format
- View AirTight Mobile Group Policy in XML Format
- Activate Automatic Client Grouping
- Apply Default Policy to New Groups
- Print List of AirTight Mobile Groups for Location
- Delete AirTight Mobile Group
- Dashboard
- Devices
- AirTight Devices
- Device Properties
- View Visible LANs
- View Visible APs
- View Visible Clients
- View Active APs
- View Active Clients
- View AirTight Device Events
- View Channel Occupancy
- View Interference
- View Mesh Network Links
- Search AirTight Devices
- Sort AirTight Devices
- Change Location
- Print AirTight Device Information for Location
- Reboot Device
- Troubleshoot Device
- Upgrade or Repair Device
- Enable Pagination for AirTight Device Listing and Set Page Size
- Disable Pagination for AirTight Device Listing
- Add Custom Filter
- Edit Custom Filter
- Delete Custom Filter
- Delete Device
- Monitor Clients
- View Client Properties
- View Recently Associated APs/Ad hoc networks
- View Events related to Client
- View Client Retransmission Rate Trend
- View Devices Seeing Client
- View Client Average Data Rate
- View Client Traffic
- Change Client Location
- Quarantine Client
- Disable Auto Quarantine/Exclude Device from Intrusion Prevention Policy
- Add to banned list
- Classify / Declassify as Smart Device
- Change Client Category
- Reset Data Transmitted by Client
- Locate Client
- View Recently Probed SSIDs
- Troubleshoot Client
- Debug Client Connection Problems
- Download Connection Log
- Delete Connection Log History
- Enable Pagination for Client Listing and Set Page Size
- Disable Pagination for Client Listing
- Add Custom Filter
- Edit Custom Filter
- Delete Custom Filter
- Print Client List for Location
- Delete Client
- Spectrogram
- Monitor Access Points (APs)
- View AP Properties
- View Recently Associated Clients
- View AP Utilization
- View AP Associated Clients
- View AP Traffic
- View AP Average Data Rate
- View Devices Seeing AP
- View AP Events
- Change AP Location
- Locate AP
- Quarantine an AP
- Change AP Category
- Disable Auto Quarantine
- Add to banned list
- Sort APs
- Filter AP Details
- Search APs
- Enable Pagination for AP Listing and Set Page Size
- Disable Pagination for AP Listing
- Add Custom Filter
- Edit Custom Filter
- Delete Custom Filter
- Print AP List for Location
- Merge APs
- Split AP
- Troubleshoot AP
- Delete AP
- Monitor Networks
- AirTight Devices
- Manage Locations and Location Layout
- Define Location Tree
- Add Location
- Edit Location
- Move Location
- Delete Location
- Search Locations
- Add Layout
- Edit Layout
- Delete Layout
- Show / Hide Location List
- Show/Hide Devices on Location Layout
- Place Devices/Locations on Location Layout
- Remove Devices/Locations from Location Layout
- View RF Coverage / Heat Maps
- Calibrate RF Views
- Zoom in / Zoom out Layout
- Adjust the Layout Opacity
- Add Note
- Edit Note
- Move Note
- Hide Notes
- Show Notes
- View Mesh Topology
- Hide Mesh Topology
- View and Manage Events
- View Events for Location
- View Deleted Events for Location
- Change Event Location
- Acknowledge Event
- Turn on Vulnerability Status for Event
- Turn off Vulnerability Status for Event
- Mark Event as Read
- Mark Event for Deletion
- Enable Pagination for Event Listing and Set Page Size
- Disable Pagination for Event Listing
- Add Custom Filter
- Edit Custom Filter
- Delete Custom Filter
- Print Event List for Location
- Forensics
- Reports
- Glossary of Icons
AirTight Management Console Configuration
95
Only the policy templates that are applied to a location are used for AP classification at that location.
Other templates that are configured but not applied to the location, will not be used for AP classification,
as they are not a part of the WLAN policy for that location.
The authorized policy templates created at other locations can be applied to a selected location but
cannot be edited or deleted. The edit and delete operations are possible only at the location where the
template is created.
A child location automatically inherits the authorized WLAN policy from its parent. You can customize the
WLAN policy for a child location. You can also switch back to an inherited policy in case you have created
a customized policy.
Configure Authorized WLAN Policy
To configure an authorized WLAN policy for a location, do the following.
1.
Select the location from the location tree.
2.
Go to Configuration>WIPS>Authorized WLAN Policy.
3.
If Wi-Fi has been deployed at the location, select the Wi-Fi is deployed at this location check box.
The Policy Template and Select "No Wi-Fi" Networks sections on this page are enabled on
selecting this check box.
4.
If you want to use an existing policy template, click the Applied icon for the existing policy template to
be applied to the location. Alternatively, Click Add New Policy Template if no policy template exists,
and add a new policy template. Refer to the Add Device Template or Edit Device Template
subsection in the Manage Policy Templates
section for details on how to add or edit a policy
template.
5. If there are any networks at the location that are not allowed to have APs connected to them,
a) Scroll down to the Select "No Wi-Fi" Networks section
b) Click Add. The Add Networks dialog box appears.
c) Enter the SSID or IP address of the network to add.
6.
Define RSSI based classification, if the WIPS is intended for use in an isolated environment without
much of a neighborhood activity like defense and military facilities. It is recommended to skip this
section altogether in case of commercial or business district environments. Either of the following two
mechanisms must be switched on to classify the APs.
a) Enter the threshold RSSI value to use for preclassification of APs with signal strength stronger
than this value as rogue or unauthorized APs.
b) Select the Preclassify APs connected to monitored subnets as Rogue or Authorized APs to
preclassify the APs connected to monitored subnets as rogue or authorized APs.
7.
Click Save to save the changes.
Edit Authorized WLAN Policy
To edit an authorized WLAN policy for a location, do the following.
1.
Select the location from the location tree.
1
Go to Configuration>WIPS>Authorized WLAN Policy.
2.
If you want to apply an existing policy, click the Applied icon for that policy in the policy template list.
3.
If you want to make changes to the policy template, click the policy template link in the policy
template list. If you want to add a new policy template click Add New Policy Template, and add a
new policy template. Refer to the Add Device Template or Edit Device Template subsections in the
Manage Policy Templates
section for details on how to add or edit a policy template.
4. If there are any networks at the location that are not allowed to have APs connected to them,
a) Scroll down to the Select "No Wi-Fi" Networks section
b) Click Add. The Add Networks dialog box appears.