Configuring Device Detection

Context

Rogue or interference devices on WLANs create security risks. To identify these devices, the administrator can enable the device detection function so that the AP can periodically report the detected device information to the AC, and the AC can identify rogue or interference devices.

The AP periodically reports the detected wireless device information to the AC, including the incremental and modified device information in detection intervals. Information may be lost on WLAN networks, resulting in inconsistent device information on the AC and AP. To address this problem, the AP periodically reports all the detected device information. Then the AC and AP periodically synchronize wireless device information.

Procedure

Run system-view
The system view is displayed.
Run wlan
The WLAN view is displayed.
Enable device detection on radios in an AP group or on a specified AP radio.
You can enable device detection in the AP group radio view or AP radio view. The configuration in the AP group radio view takes effect on all AP radios in an AP group and that in the AP radio view takes effect only on a specified AP radio. The configuration in the AP radio view has a higher priority than that in the AP group radio view.
- Enable device detection on radios in an AP group.
  1. Run the ap-group name group-name command to enter the AP group view.
  2. Run the radio radio-id command to enter the radio view.
  3. Run the wids device detect enable command to enable device detection.
    
    By default, device detection is disabled on radios in an AP group.
  4. Run the quit command to return to the AP group view.
- Enable device detection on an AP radio.
  1. Run the ap-id ap-id, ap-mac ap-mac, or ap-name ap-name command to enter the AP view.
  2. Run the radio radio-id command to enter the radio view.
  3. Run the wids device detect enable command to enable device detection.
    
    By default, device detection is disabled on an AP radio.
  4. Run the quit command to return to the AP view.
(Optional) Set the intervals at which an AP reports the incremental detected wireless device information.
1. Run the quit command to return to the WLAN view.
2. Run the wids-profile name profile-name command to enter the WIDS profile view.
3. Run the device report-interval interval command to set the interval at which an AP reports the incremental detected wireless device information.
  By default, an AP reports incremental wireless device information to an AC at an interval of 300 seconds.