1. Give up on 2.4 – this is especially true if you’re density isn’t great and it’s forcing users to bring-their-own hotspots to cover gaps.
2. Even as devices like printers, and hotspots transition to 5 Ghz, the propagation is so poor that I don’t see them as a problem in the airspace. You’d need a lot of them in a small area before all your channel options are exhausted. 3. Make sure your 5 Ghz deployment is dense, mitigating some of the reasons why people are using hotspots. 4. Make guest access/on-boarding simple otherwise users will just default to a hotspot out of frustration. 5. Consider Cisco Prime instead of AMP – Demo it – you may find Rogue management to be easier, but likely still futile in our education environment. 6. Invest in Cisco WAPs that have CleanAir. This goes a long way in working around the impact (move channels, identify top badly configured or misbehaving devices) and you get excellent data on the impact those rogues are having on your RF. Jeff From: "[email protected]" <[email protected]> on behalf of "Watters, John" <[email protected]> Reply-To: "[email protected]" <[email protected]> Date: Friday, July 8, 2016 at 6:44 AM To: "[email protected]" <[email protected]> Subject: [WIRELESS-LAN] Rogue Containment I wanted to gather some information on what folks are doing in the area of rogue containment. We are a Cisco shop that uses the Aruba/Airwave AMP management platform. The native Cisco controllers give a good bit of control over handling rogues but it is very time consuming to keep current. The AMP integrates reasonably well with this function and automates a lot of the work. We have tried various combinations of different policies but without any real success. On a typical day during the fall & spring semesters, we see in the range of 1,500-2,000 rogue APs, many being cell phone hotspots that are traveling around campus. Another sizeable group are wireless printers. Efforts to educate our users about the problems to everyone caused by these devices has been largely unsuccessful. And, no one has the time to try to track down the owners of these devices to ask them not to turn these things on (it probably wouldn't be successful even if we did find them). Of course, the problem is not nearly as severe in the 5 GHz space. But, this may only be temporary until more devices utilize that frequency range. What are other schools doing to mitigate rogue wireless signals both from their own faculty, staff, and students, but also from the general public who happen to wander through campus? And, do you consider it a successful effort? Thanks for any info you can give me. John Watters Network Engineer, Office of Information technology The University of Alabama<https://www.ua.edu> A115 Gordon Palmer Hall Box 870346 Tuscaloosa, AL 35487 Phone 205-348-3992<tel:205-348-3992> [email protected]<mailto:[email protected]> [he University of Alabama]<https://www.ua.edu/> ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
