Christina, I don't really use this functionality but I read this sentence in the config guide for it which might shed some light on why a trunk is needed:
A rogue client connected to the rogue access point information is used to track the switch port to which the rogue access point is connected in the network. If it's an access port, the client will not be seen... Manon Lessard Technicienne en développement de systèmes CCNP, CWNA, CWDP, CWAP Direction des technologies de l'information Pavillon Louis-Jacques-Casault 1055, avenue du Séminaire Bureau 0403 Université Laval, Québec (Québec) G1V 0A6, Canada 418 656-2131, poste 12853 Télécopieur : 418 656-7305 manon.less...@dti.ulaval.ca www.dti.ulaval.ca Avis relatif à la confidentialité | Notice of Confidentiality -----Original Message----- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Christina Klam Sent: 25 octobre 2017 14:53 To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] Cisco Prime Switch Port Trace All, I have been asked to prioritize rogue AP detection. We already have Auto Switch Port Trace feature enabled, but I discovered today why it hasn't been working. According to the Cisco documentation, "Switch port configuration—Trunking switch ports must be correctly configured. Switch port security must be disabled." So, as we have port-security enabled on all switch ports (so that we can control/monitor the personal switches on campus and ResNet), switch port trace is NOT working. My question to you guys is WHY is there this dependency? My google-foo is coming up with no explanation. Thank you, Christina ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/discuss. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/discuss.