We have 2 5508 controllers running 6.0.182 code, both in the same mobility group. Rogue AP containment is disabled.
But we are seeing Events;
AP "XXX" is being contained. This is due to rogue device spoofing AP "XXX" BSSID or targeting AP "XXX" BSSID.
Once this event happens it disables "XXX" radio for about 1-2 minutes. Of course this is causing client connectivity issues. We have checked several times and there are no other devices in the area spoofing or targeting the APs (its on the top floor of a small hospital).
As anyone seen this issue before?
Thank You,