Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +2 person also asked this people also asked this
  • Locked Locked
  • Replies 3 replies
  • Subscribers 11 subscribers
  • Views 2839 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Rogue AP Detection Question

Steve Dugger

When a rogue AP is detected, what does sophos actually do? Does it just mark it as Rogue or does it take additional steps to help alert/remediate the issue?



This thread was automatically locked due to age.
Parents Reply Children
  • +2 in reply to LuCar Toni

    Agree. As of now, we are scanning the neighborhood for networks and just classify them. The solution we have is just intrusion detection and not prevention. WIPS in itself is plagued with a lot of issues, right from the legality as has been mentioned above to the effectiveness of the solution. Normally WIPS consists of APs having 3 radios with one acting as a sensor. There are solutions where the same radio serves the clients and acts as a sensor by timesharing. 

    To summarize, we do not have any actions that can be performed once rogue APs are identified.