04-13-2017 05:02 AM
04-13-2017 05:10 AM
Can you explain more?
Besides ise being populated with a list of MAC address and profiling them? What are you looking for?
You could even authenticate your APs perhaps and secure your wired ports and not allow APs that aren't sanctioned
What about wireless controller rogue AP detection
04-13-2017 05:10 AM
Can you explain more?
Besides ise being populated with a list of MAC address and profiling them? What are you looking for?
You could even authenticate your APs perhaps and secure your wired ports and not allow APs that aren't sanctioned
What about wireless controller rogue AP detection
04-13-2017 05:48 AM
Hi Jason,
the idea is to discover and possibly control rouge AP leveraging if possible ISE, apart from known wireless controller capability. I guess profiling is the best option and maybe the latest anomalous endpoint detection feature, isn't it?
Is there any Technotes on this topic?
Thanks,
Paolo
04-13-2017 08:29 AM
Besides the profiling guide, I will check, don’t think so
https://communities.cisco.com/servlet/JiveServlet/previewBody/68156-102-1-125076/How-To_30_ISE_Profiling_Design_Guide.pdf
04-13-2017 10:37 AM
Identify the expected corp wireless devices and create a logical profile to restrict/block the non-corp controllers/APs.
04-13-2017 11:32 AM
The AireOS based Wireless LAN Controllers have built in features to handle Rogue APs. As Jason mentioned, ISE can authenticate Wireless Access points and ensure only the known one's are allowed in the network. If a known AP, changes it profile and if necessary data is made available for ISE, then ISE can flag it as 'Anomalous'
Cheers!
-Hari
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide