Wireless Access

Followed the WIP wizard and configured the containment to deauth, however, this is affecting all our production SSID's broadcasting from our Aruba AP's.  I have 1 airmonitor within reach of the non-valid SSID that is broadcasting.  I am using the "default"  WIP policy and have it applied to all my AP Groups.. is this where I am configuring it incorrectly?  When enabled and containment set to deauth only, no one is able to connect to any production SSID.  I am not configuring those SSID's in the WIP wizard.

Do you have your valid SSIDs defined in the IDS profile?

that was it!!! thanks!

Is there anyway to monitor this?  meaning can I see who and what is deauth'd?

also seems like there is an issue blocking an SSID that has a space in it??

Hi RR8,

Can you put the SSID in quotes? For instance, "Bad Guy Network"

-Mike

tried that, doesnt let you put quotes.

You need to be very careful with that.  Blocking wireless can be illegal in certain circumstances.  What are you trying to do?