Users Guide

ManualsBrandsDell ManualsAccess PlatformsW-3200

121

122

123

124

125

126

127

128

129

130

129 | Control Plane Security Dell Networking W-Series ArubaOS 6.4.x| User Guide

(host) #whitelist-db cpsec modify mac-address <name>

ap-group <ap_group>

ap-name <ap_name>

cert-type {switch-cert|factory-cert}

description <description>

mode {disable|enable}

revoke-text <revoke-text>

state {approved-ready-for-cert|certified-factory-cert}

Revoking an AP from the Campus AP Whitelist

You can revoke an invalid or rogue AP either by modifying its revoke status (as described in Modifying an AP in

the Campus AP Whitelist) or by directly revoking it from the campus APwhitelist without modifying any other

parameter. When revoking an invalid or rogue AP, enter a brief description why the AP is being revoked. When

you revoke an AP from the campus AP whitelist, the campus APwhitelist retains the information of the AP. To

revoke an invalid or rogue AP and permanently remove it from the whitelist, delete that entry (as described in ).

In the WebUI

To revoke an AP from the campus AP whitelist:

1. Navigate to Configuration > Wireless > AP Installation.

2. Click the Whitelist tab.

3. Click the Entries>> button.

4. Select the checkbox of the AP that you want to revoke, then click Revoke.

If your campus AP whitelist is large and you cannot immediately locate the AP that you want to revoke,

select the Search link. The Whitelist Search tab displays the fields APGroup, Cert Type, APMAC

Address, AP Name, and State that allow you to search for an AP. Specify the values of the AP that you

want to locate in these fields, then click Search. The campus APwhitelist displays a list of APs that match

your search criteria. Select the checkbox of the APthat you want to revoke, then click Revoke.

5. Enter a brief description why the AP is being revoked, then click Update.

In the CLI

To revoke an AP via the campus AP whitelist:

(host) #whitelist-db cpsec revoke mac-address <name> revoke-text <revoke-text>

Deleting an AP from the Campus AP Whitelist

Before deleting an AP from the campus APwhitelist, verify that auto certificate provisioning is either not

enabled or enabled only for IP addresses that do not include the AP being deleted. If you enable automatic

certificate provisioning for an AP that is still connected to the network, you cannot delete it from the campus

AP whitelist; the controller immediately re-certifies the AP and recreates its whitelist entry.

In the WebUI

To delete an AP from the campus AP whitelist:

1. Navigate to Configuration > Wireless > AP Installation.

2. Click the Whitelist tab.

3. Click the Entries>> button.

4. Select the checkbox of the AP you want to delete, then click delete.

If your campus AP whitelist is large and you cannot immediately locate the AP that you want to delete,

select the Search link. The Whitelist Search tab displays the fields APGroup, Cert Type, APMAC

Address, AP Name, and State that allow you to search for an AP. Specify the values of the AP that you