Controller-less WLANs

What is a rogue AP and how to check the number of Rogue APs and related logs using Aruba Central dashboard?

Aruba Employee
Environment This article applies to all IAPs running 6.2.1.0-3.3.0.0 or higher versions and managed by Aruba Central cloud based solution.

 

 

Any unauthorized AP that is plugged into your wired network is considered as rogue. This is a direct security threat to the network as an attacker can then launch innumerous attacks which cause issues ranging from considerable performance loss to data theft.

To check rogue related logs and events follow these steps:

  1. Navigate to Monitoring> WIDS.  On top you would find the total number of Rogue APs detected.


1.png



     2. Navigate further down the page, to view various logs related to Rogue and other threats under WIDS events. The Type field shows the AP classification as well as types of attacks on the network.


2.png

Version history
Revision #:
1 of 1
Last update:
‎06-18-2014 01:55 PM
Updated by:
 
Labels (1)
Contributors
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: 
Is this a frequent problem?

Request an official Aruba knowledge base article to be written by our experts.