beautypg.com

Device categorization – Brocade Mobility Access Point System Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

Page 575

background image

Brocade Mobility Access Point System Reference Guide

565

53-1003100-01

8

21. Refer to Thresholds field to set the thresholds used as filtering criteria.

22. Set a Filter Expiration from 1 - 86,400 seconds that specifies the duration a client is excluded

from radio association when responsible for triggering a WIPS event.

23. Refer to the Payload table to set a numerical index and offset for the WIPS signature.

24. Select OK to save the updates to the WIPS Signature configuration. Select Reset to revert to

the last saved configuration. The WIPS policy can be invoked and applied to the access point
profile by selecting Activate Wireless IPS Policy from the upper, left-hand side, of the access
point user interface.

Device Categorization

Getting Started with the Mobile Computer

A proper classification and categorization of access points and clients can help suppress
unnecessary unauthorized access point alarms, and allow an administrator to focus on alarms on
devices actually behaving in a suspicious manner. An intruder with a device erroneously authorized
could potentially perform activities that harm your organization.

Authorized access points and clients are generally known to you and conform with your
organization’s security policies. Unauthorized devices are those detected as interoperating within
the network, but have not been approved. These devices should be filtered to avoid jeopardizing
the data managed by the access point and its connected clients. Use the Device Categorization
screen to apply neighboring and sanctioned (approved) filters on peer access points operating in
this access point’s radio coverage area. Detected client MAC addresses can also be filtered based
on their classification in this access point’s coverage area.

To categorize access points and clients as authorized or unauthorized:

1. Select Configuration tab from the Web user interface.

Select Security

Select Device Categorization to display existing device categorization policies.

Wireless Client Threshold

Specify the threshold limit per client that, when exceeded, signals the event. The
configurable range is from 1 - 65,535.

Radio Threshold

Specify the threshold limit per radio that, when exceeded, signals the event. The
configurable range is from 1 - 65,535.

See also other documents in the category Brocade Computer Accessories: