CHAPTER 8. Security
© SAMSUNG Electronics Co., Ltd.
page 389 of 689
8.2.2.2
Configuring the unmanaged AP classification policy
To configure the unmanaged type unauthorized AP classification policy, execute the
command as follows:
Configuration using CLI
1) Go to configure
wi
device configuration mode of CLI.
WEC8500# configure terminal
WEC8500/configure# wi
WEC8500/configure/wi# device
WEC8500/configure/wi/device#
2) Configure the unmanaged type unauthorized AP policy.
add-classification-rule-unmanaged [RULE_NAME] enable [PRIORITY]
[MATCH_TYPE] [MIN_RSSI] [MIN_DURATION] [NO_OF_MIN_ASSOC
CLIENTS] [ENCRYPTION] [SSID_TYPE] [SSID]
Parameter
Description
RULE_NAME
Classification policy name
PRIORITY
Rule priority number
MATCH_TYPE
Enter either match-all or match-any.
- match-all: Classifies as a unmanaged unauthorized AP when the
detection criteria entered thereafter are all satisfied.
- match-any: Classifies as a unmanaged unauthorized AP when any
one of the detection criteria entered thereafter is satisfied.
MIN_RSSI
Minimum RSSI. When the RSSI value is higher than this value, it is
classified as a unmanaged unauthorized AP.
MIN_DURATION
Minimum lasting time (unit: s). When the signal lasting time is higher
than this value, it is classified as a unmanaged unauthorized AP.
NO_OF_MIN_ASSOCCL
IENTS
Minimum number of connected terminals When the number of
connected terminals is higher than this value, it is classified as a
unmanaged unauthorized AP.
ENCRYPTION
Whether to use encryption
- 0: Does not use encryption. If encryption is not used, it is classified
as a unmanaged unauthorized AP.
- 1: Uses encryption. If encryption is used, it is classified as a
malicious unauthorized AP.
SSID TYPE
SSID type
- managed-ssid: SSID that is used in an authorized AP that is
connected to the APC.
- user-configured-ssid [SSID]: Entered SSID (An AP that has SSID as
SSID_NAME is classified as a friendly type unauthorized AP.)
SSID_NAME
SSID that is used when the SSID_TYPE is entered as user-
configured-ssid