106 | Aruba Configuration Reference AirWave Wireless Management Suite | Configuration Guide
3. Click Add or Save. The added or edited Unauthorized Devices profile appears on the Profiles > IDS >
Unauthorized Devices
page.
Suspected Rogue
Containment
Confidence Level
(50-100)
60 Set the confidence level. When an AP is classified as a suspected rogue
AP, it is assigned a 50% confidence level. If multiple APs trigger the same
events that classify the AP as a suspected rogue, the confidence level
increases by 5% up to 95%.
In combination with suspected rogue containment, this option configures
the threshold by which containment should occur. Suspected rogue
containment occurs only when the configured confidence level is met.
Protect Valid
Stations
No Use this setting to disallow valid stations from connecting to a non-valid
AP.
Detect Bad WEP No Enable or disable detection of WEP initialization vectors that are known to
be weak. A primary means of cracking WEP keys is to capture 802.11
frames over an extended period of time and searching for such weak
implementations that are still used by many legacy devices.
Detect
Misconfigured AP
No Enable or disable detection of misconfigured APs. An AP is classified as
misconfigured if it does not meet any of the following configurable
parameters:
z Valid channels
z Encryption type
z Short preamble
z List of valid AP MAC OUIs
z Valid SSID list
Protect
Misconfigured AP
No Enable or disable protection of misconfigured APs.
Protect SSID No Enable or disable use of SSID by only valid APs.
Privacy No Enable or disable encryption as valid AP configuration.
Require WPA No Enable or disable “misconfigured” flagging of any valid AP that is not using
WPA encryption.
Valid 802.11g
Channel for Policy
Enforcement
N/A Enter the list of valid 802.11g channels that third-party APs are allowed to
use.
Valid 802.11a
Channel for Policy
Enforcement
N/A Enter the list of valid 802.11a channels that third-party APs are allowed to
use.
Valid MAC OUIs N/A Enter the list of MAC OUIs of wired devices in the network, typically
gateways or servers.
Valid and Protected
SSIDs
N/A Enter the list of valid and protected SSIDs.
Protect 802.11n High
Throughput Devices
No Enable or disable protection of high-throughput 802.11n devices not
operating in 40 MHz mode.
Protect 40MHz
802.11n High
Throughput Devices
No Enable or disable protection of high-throughput (802.11n) devices
operating in 40 MHz mode.
Detect Active 802.11
Greenfield Mode
Yes Enable or disable detection of high-throughput devices advertising
greenfield preamble capability.
Table 36 Aruba Configuration > Profiles > IDS > Unauthorized Devices Profile Settings (Continued)
Field Default Description
To Next Page
Loading...
