Filter
Top Products
2-23
FAQ and Troubleshooting Guide for the CiscoWorks Wireless LAN Solution Engine
OL-8376-01
Chapter 2 Fault Descriptions
IDS (Intrusion Detection System) Faults
Unregistered Client(s)
present
One or more unregistered clients
have been detected in the wireless
network, and are unsucessfully
attempting to authenticate with
the APs.
The unregistered client fault is
triggered when an AP in scanning
mode detects a number of probe
requests and association requests
from a station, client, or access
point, which crosses the
configuired threshold in the
configured time.
The registration attempts are not
being made to the scanning AP;
the attempts are being made to
regular APs that the scanning AP
notices.
The scanning AP counts the
packets per station.
IDS >
Manage IDS Settings
> General IDS
Settings >
Unregistered Client
Set the priority of the fault to be
generated and the threshold for the
failed authentication attempts by the
client.
Make a physical check near the
scanning AP that reported this fault
to see if there are any rogue clients.
(The fault is generated based on
the configured Client
Registration Request Count
within a 15-minute period. The
default is 100 registrations, but
can be changed to 200, 300, 400
or 500. )
This fault is cleared when no
registration attempts are detected
during the observation interval
(the client leaves the wireless
network or is not seen or reported
by any Scanning APs).
Wireless Client MAC
spoofing detected
The WLSE has detected a
spoofed MAC address.
Whenever the WDS detects an
authentication taking place for a
known MAC address, it verifies
that the same user ID is being
used. If the user ID does not
match, the authentication is
rejected and a fault is issued.
When this fault is cleared, the
following message displays: No
Wireless Client MAC Spoofing
Detected.
IDS >
Manage IDS Settings
> General IDS
Settings > Wireless
Client MAC Spoofing
Review your network to determine
the action necessary to clear the fault
condition.
Table 2-3 IDS Faults (continued)
Fault Description Explanation Related Setting Recommended Action