Operation Manual
RF Detection Commands
RF Detection Commands
20 – 469
set rfdetect signature
Enables MP signatures. An MP signature is a set of bits in a management frame sent by an MP
that identifies that MP to MSS. If someone attempts to spoof management packets from a Trapeze
MP, MSS can detect the spoof attempt.
Syntax
set rfdetect signature {enable | disable}
Defaults
MP signatures are disabled by default.
Access
Enabled.
History
Introduced in MSS Version 4.0.
Usage
The command applies only to MPs managed by the MX switch on which you enter the
command. To enable signatures on all MPs in a Mobility Domain, enter the command on each MX
switch in the Mobility Domain.
Examples
The following command enables MP signatures on an MX:
MX-20# set rfdetect signature enable
success: signature is now enabled.
set rfdetect signature key
Creates an encrypted RF fingerprint key to use as a signature for an MP.
Syntax
set rfdetect signature key encrypted <key_value>
Defaults
Disabled by default.
Access
Enabled
History
Introduced in 5.0
set rfdetect ssid-list
Adds an SSID to the permitted SSID list.The permitted SSID list specifies the SSIDs that are
allowed on the network. If MSS detects packets for an SSID not on the list, the AP sending the
packets is classified as a rogue. MSS issues countermeasures against the rogue if they are enabled.
enable Enables MP signatures.
disable Disables MP signatures.
Note:
You must use the same MP signature setting (enabled or disabled) on all MX
switches in a Mobility Domain.
key 16 bytes separated by colons generated by the user. For example,
a1:b2:c3:d4:e5:f6:g7:h8 can be a key value.
encrypted Encrypts the signature key.