WIDS Spoof SSID Profile

Context

WLAN services are available in public places, such as banks and airports. Users can connect to the WLANs after associating with corresponding SSIDs. If a rogue AP is deployed and provides spoofing SSIDs similar to authorized SSIDs, the users may be misled and connect to the rogue AP, which brings security risks. To address this problem, configure a fuzzy matching rule to identify spoofing SSIDs. The device compares a detected SSID with the matching rule. If the SSID matches the rule, the SSID is considered a spoofing SSID. The AP using the spoofing SSID is a rogue AP. The device then take countermeasures against the rogue AP, forcing users to disconnect from the AP.

Procedure

Create an SSID profile.

Choose Configuration > Wireless Services > Profile > WIDS > WIDS Spoof SSID Profile. The WIDS Spoof SSID Profile List page is displayed.
Click Create. The Create WIDS Spoof SSID Profile page is displayed.
Enter the name of the new WIDS spoof SSID profile in Profile name.
To copy all parameters from another profile to the new profile, select the name of the profile in Copy parameters from other profiles. If None is selected, parameters are not copied from another profile.
Click OK. The parameter setting page of the new WIDS spoof SSID profile is displayed.

Set parameters for creating a WIDS spoof SSID profile. Table 1 describes the parameters for modifying an SSID profile.

**Table 1** Parameters for creating a WIDS spoof SSID profile
Parameter	Description
WIDS Spoof SSID Profile	Name of the WIDS spoof SSID profile, which cannot be modified.
Rule for identifying spoofing SSIDs	Regular expression of an SSID. After this parameter is set, click . If a detected SSID matches the regular expression, the SSID is considered a spoofing SSID. Repeat the preceding steps to add multiple rules for identifying spoofing SSIDs. Click to delete the selected rule for identifying spoofing SSIDs.

Click Apply. In the Info dialog box that is displayed, click OK.

Modify an SSID profile.
1. Choose Configuration > Wireless Services > Profile > WIDS > WIDS Spoof SSID Profile. The WIDS Spoof SSID Profile List page is displayed.
2. Click the name of the WIDS spoof SSID profile that you want to modify. The WIDS spoof SSID profile configuration page is displayed.
3. Set parameters for modifying a WIDS spoof SSID profile. Table 1 describes the parameters for modifying an SSID profile.
4. Click Apply. In the Info dialog box that is displayed, click OK.
Delete an SSID profile.
1. Choose Configuration > Wireless Services > Profile > WIDS > WIDS Spoof SSID Profile. The WIDS Spoof SSID Profile List page is displayed.
2. Select the profile that you want to delete and click Delete. In the Confirm dialog box that is displayed, click OK.
Display the profile reference relationship.
1. Choose Configuration > Wireless Services > Profile > WIDS > WIDS Spoof SSID Profile. The WIDS Spoof SSID Profile List page is displayed.
2. Select the profile of which you want to display the reference relationship and click Display Reference Relationship. The system displays the types and names of the objects that reference the profile.
  
  Click Hide Reference Relationship. The system hides the displayed results.