08-09-2007 05:22 AM - edited 07-03-2021 02:27 PM
Recently discovered something about containment: Containing an existing rogue client will only prevent it from reconnecting later. It does NOT knock off the existing client from the AP.
Containing a rogue AP will only prevent NEW connections from being made (i.e.: roams, re-connections, etc.)
Maybe this was commonly known, however it was news to me.
Isn't there any way to bump an existing client off the system?
- John
08-14-2007 01:54 PM
Configure Radius server for access point,. Consider implementing EAP.
08-16-2007 05:06 AM
Unfortunately, that will have no bearing on the fact that when you contain foreign, rogue APs, any of your trusted wireless clients that may happen to already be attached to them will not be knocked off of the rogue AP.
The point of the original post was this:
Don't assume that by implementing containment that you are knocking off clients who have already connected to a rogue AP. You will only prevent new clients from attaching.
Since there is no message from the WLC/WCS system stating that existing rogue clients will not be affected until they roam or disassociate/reassociate from the rogue AP, it is easy to assume (as I did) that containment "jams" existing wireless clients. This could easily lead to a false sense of security.
- John
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide