WLAN_1.3.6.1.4.1.2011.6.139.15.1.1.1 hwWlanWidsRougeDevDetectedTrap

Description

WLAN/4/WIDS_DETECT_DEVICE:OID [oid] Detected rogue device. (Device Mac=[OPAQUE], Device type=[INTEGER], Device channel=[INTEGER], Device RSSI =[LONG], Device ssid=[OCTET], Monitor APName=[OCTET], Monitor APMAC=[OPAQUE], Monitor AP radio =[INTEGER], Monitor AP ID=[INTEGER]).

This alarm is generated when an unauthorized device is detected.

Attribute

Alarm ID Alarm Severity Alarm Type
1.3.6.1.4.1.2011.6.139.15.1.1.1 Warning environmentalAlarm(6)

Parameters

Name Meaning
oid Indicates the ID of the MIB object.
Device Mac Indicates the MAC address of an unauthorized device.
Device type
Indicates the type of an unauthorized device.
  • 1: AP
Device channel Indicates the channel of an unauthorized device.
Device RSSI Indicates the RSSI of an unauthorized device.
Device ssid Indicates the SSID of an unauthorized device.

Monitor APName

 Indicates the name of a monitoring AP.

Monitor APMAC

 Indicates the MAC address of a monitoring AP.
Monitor AP radio Indicates the radio ID of a monitoring AP.
Monitor AP ID Indicates the ID of a monitoring AP.

Impact on the System

None.

Possible Causes

An unauthorized device was detected.

Procedure

  1. Take countermeasures against the detected unauthorized device and configure WIPS.
    1. Enter the AP group radio view or the AP radio view and run the wids contain enable command to enable rogue device containment.
    2. Enter the WIDS profile view and run the contain-mode command to configure the countermeasures mode of the AP.
  2. Then, check whether the alarm persists.

    • If so, go to Step 2.
    • If not, go to Step 3.

  3. Collect alarm messages, log messages, and configurations, and then contact the technical support personnel.
  4. End.

Related Information

None.

Parent topic: WLAN
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.