Moving rogue aps to the allowed ap list – Brocade Mobility 7131 Access Point Product Reference Guide (Supporting software release 4.4.0.0 and later) User Manual

236

Brocade Mobility 7131 Access Point Product Reference Guide

53-1002517-01

6

3. Use the Allowed AP List field to restrict Brocade Mobility AP’s from Rogue AP detection and

create a list of device MAC addresses and ESSID’s approved for interoperability with the
Mobility 7131 Access Point.

4. Click Apply to save any changes to the Rogue AP Detection screen. Navigating away from the

screen without clicking Apply results in all changes to the screens being lost.

5. Click Undo Changes (if necessary) to undo any changes made. Undo Changes reverts the

settings displayed on the Rogue AP Detection screen to the last saved configuration.

6. Click Logout to securely exit the Access Point applet. A prompt displays confirming the logout

before the applet is closed.

Moving Rogue APs to the Allowed AP List

The Active APs screen enables the user to view the list of detected rogue APs and, if necessary,
select and move an AP into a list of allowed devices. This is helpful when the settings defined within
the Rogue AP Detection screen inadvertently detect and define a device as a rogue AP.

RF On-Channel
Detection

Select the

RF On-Channel Detection

checkbox to enable the access point to detect

rogue APs on its current (legal) channel setting.

RF Scan by Detector
Radio

If the access point is a dual-radio model, select the

RF Scan by Detector Radio

checkbox to enable the selected 11a or 11b/g radio to scan for rogue APs. For example, if

11b/g

is selected, the existing 11a radio would act as the “detector radio,” scanning on all

11b/g channels while the existing 11b/g radio continues to service MUs. The assumption
is, when planning to do an all channel scan on one band, the MUs would also be on that
band. The radio on the other band is used as the “detector radio.”

RF A/BG Scan

Select this checkbox to scan for rouges over all channels on both of the access point’s 11a
and 11bg radio bands. The switching of radio bands is based on a timer with no user
intervention required. This option provides a good opportunity to detect rogues, as rogues
often roam from one association to a stronger one regardless of the current operating
channel.

Authorize Any AP
Having Brocade
Defined MAC Address

Select this checkbox to enable all access points with a Brocade Mobility MAC address to
interoperate with the Mobility 7131 Access Point conducting a scan for rogue devices.

Add

Click

Add

to display a single set of editable MAC address and ESS address values.

Del (Delete)

Click the

Delete

button to remove the highlighted line from the Rule Management field.

The MAC and ESS address information previously defined is no longer applicable unless
the previous configuration is restored.

Delete All

Click the

Delete All

button to remove all entries from the Rule Management field. All MAC

and ESS address information previously defined is no longer applicable unless the
previous configuration is restored.

Any MAC

Select the

Any MAC

checkbox to prevent a device’s MAC address (whether it is a known

device MAC address or not) from being considered a rogue device.

MAC Address

Click

Add,

and enter the device MAC address to be excluded from classification as a rogue

device.

Any ESSID

Select the

Any ESSid

checkbox to prevent a device’s ESSID (whether it is a known device

ESSID or not) from being considered a rogue device

ESSID

Click

Add

, and enter the name of a device ESSID to be excluded from classification as a

rogue device. Do not use < > | " & \ ?
as characters for the ESSID name.