Client Auto-Classification

The client auto-classification policy determines how wireless clients are classified after initial discovery and subsequent associations with your APs.

Clients are classified in these categories:

  • Authorized — Clients that connect via an authorized AP.
  • Guest — Clients that have connected to an authorized guest SSID.
  • Rogue — Clients that connect to a rogue AP within range of the monitored network. Rogue clients remain classified as rogue until deleted or manually re-categorized.
  • External — Neighborhood clients that are not part of your Wi-Fi network but operate in the vicinity. External clients can be reclassified if they connect to an Authorized, Authorized Guest, or Rogue access point.
  • Uncategorized — New clients discovered by Wi-Fi Cloud that have not yet been classified.
  • Misbehaving — Authorized clients that connected to an external, guest, or rogue AP, ad hoc network, or performed wired/wireless bridging.

You can define the classification policy of detected wireless clients at the selected location based on initial discovery and subsequent AP associations by the client. This policy is automatically inherited by child locations of the selected location. The intrusion prevention actions enforced on wireless clients are based on these classifications.

Configure Client Auto-Classification

To configure client auto-classfication, in Discover, select Configure > WIPS > Client Auto-classification.

Screen shot of the Client Auto-Classification settings in Discover

Initial Client Classification

You can choose to classify any newly discovered client as either External, Authorized, or Guest, and then allow them to be reclassified based on their associations.

Association Based Classification

These options are based on when clients connect to Authorized, Rogue, Guest, and External APs on your network.