Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsW-Airwave
171172173174175176177178179180
Dell PowerConnect W AirWave 7.2 | User Guide Using RAPIDS and Rogue Classification | 171
Rogue Device Threat Level
The threat level classification adds granularity for each general RAPIDS classification. Devices of the same
classification can have differing threat scores based on the classifying rule, ranging from 1 to 10 with a default
value of 5. This classification process can help identify the greater threat. Alerts can be defined and sorted by
threat level.
Threat level and classification are both assigned to a device when a device matches a rule. Once classified, a
device’s classification and threat level change only if it is classified by a new rule or is manually changed. Threats
levels can be manually defined on the RAPIDS > Detail page when the RAPIDS classification is manually
overridden or you can edit the rule to have a higher threat level.
Viewing and Configuring RAPIDS Rules
To view the RAPIDS rules that are currently configured on AWMS, navigate to the RAPIDS > Rules page
(Figure 117).
Figure 117 RAPIDS > Rules Page Illustration
Table 99 defines the fields in the RAPIDS > Rules page.
To create a new rule, select the Add button next to New RAPIDS Classification Rule to launch the RAPIDS
Classification Rule page (see Figure 118).
Table 99 RAPIDS > Rules Page
Field Description
Default Classification Sets the classification that a rogue device receives when it does not match any rules.
Add New RAPIDS
Classification Rule
Select this button to create a RAPIDS classification rule.
Rule Name Displays the name of any rule that has been configured. Rule names should be descriptive and should
convey the core purpose for which it was created.
Classification Displays the classification that devices receive if they meeting the rule criteria.
Threat Level Displays the numeric threat level for the rogue device that pertains to the rule. Refer to “Rogue Device
Threat Level” on page171 for additional information.
Enabled Displays the status of the rule, whether enabled or disabled.
Reorder Drag and Drop
Icon
Changes the sequence of rules in relation to each other. Select, then drag and drop, the icon for any
rule to move it up or down in relation to other rules. A revised sequence of rules must be saved before
rogues are classified in the revised sequence.
NOTE: The sequence of rules is very important for proper rogue classification. A device gets classified
by the first rule to which it complies, even if it conforms to additional rules later in the sequence.