Using clients to detect rogue devices – Brocade Mobility 5181 Access Point Product Reference Guide (Supporting software release 4.4.0.0) User Manual

166

Brocade Mobility 5181 Access Point Product Reference Guide

53-1002516-01

Configuring rogue AP detection

6

5. Click OK to securely exit the Detail screen and return to the Active APs screen.

6. Click Cancel (if necessary) to undo any changes made and return to the Active APs screen.

Using clients to detect rogue devices

The access point can use an associated Client that has its rogue AP detection feature enabled to
scan for rogue APs. Once detected, the rogue AP(s) can be moved to the list of allowed devices (if
appropriate) within the Active APs screen. When adding an Client’s detection capabilities with the
access point’s own rogue AP detection functionality, the rogue detection area can be significantly
extended.

To use associated rogue AP enabled Clients to scan for rogue APs:

1. Select Network Configuration -> Wireless -> Rogue AP Detection -> Client Scan from the

Mobility 5181 Access Point menu tree.

The On Demand Client Scan screen displays with associated Clients with rogue AP detection
enabled

2. Highlight an Client from within the Rogue AP enabled Clients field and click the scan button.

The target Client begins scanning for rogue devices using the detection parameters defined
within the Rogue AP Detection screen. To modify the detection parameters, see

“Configuring

rogue AP detection”

on page 162.

Those devices detected as rogue APs display within the Scan Result table. Use the displayed
AP MAC, ESSID and RSSI values to determine the device listed in the table is truly a rogue
device or one inadvertently detected as a rogue AP.

3. If necessary, highlight an individual Client from within the Scan Result field and click the Add to

Allowed AP List button to move the AP into the Allowed APs table within the Active APs screen.

4. Additionally, if necessary, click the Add All to Allowed APs List button to move every device

within the Scan Result table into the Allowed APs table within the Active APs screen. Only use
this option if you are sure all of the devices detected and displayed within the Scan Results
table are non-hostile APs.

5. Highlight a different Client from the Rogue AP enabled Clients field as needed to scan for

additional rogue APs.

6. Click Logout to return to the Rogue AP Detection screen.

Finder’s MAC

The MAC address of the access point detecting the rogue AP.

Detection Method

Displays the RF Scan by Client, RF On-Channel Detection or RF
Scan by Detector Radio method selected from the Rogue AP
screen to detect rogue devices.

First Heard (days:hrs:min)

Defines the time in (days:hrs:min) that the rogue AP was initially
heard by the detecting AP.

Last Heard (days:hrs:min)

Defines the time in (days:hrs:min) that the rogue AP was last heard
by the detecting AP.

Channel

Displays the channel the rogue AP is using.