I am helping out a coustomer that have done dedicated VLANS for AP's.
This is not good for Rogue detection, and trunking all VLANS to controller is not really feasible with their topology.
Reading up on rogue detection, and also asking before, one of the advices have been to trunk all the VLANS (wired) to an AP or AM.
THis is something that could improve the situation here, I am just a bit curious to what exactly does that mean.
Do you create all the needed VLANS on the Aruba controller as well, and then create a eth profile with a wired AP where all VLAN are allowed in trunking mode?
I can't see that just trunking them to a AM/AP does much, the VLANS must exist on the controller as well, otherwise the packets will be discarded.