Activate Intrusion Prevention

Intrusion Prevention is disabled by default, and you must activate the feature for a location before your Intrusion Prevention Policy takes effect to prevent threats.

The intrusion prevention policy is a location specific policy. It cannot be inherited from a parent location.

Before You Activate Intrusion Prevention

Before you activate Intrusion Prevention, make sure your deployment is correctly configured and stable:

  • Make sure your known approved devices are classified as Authorized before you activate intrusion prevention. You can check this in Manage on the Monitoring > Security > APs page.

Monitoring - Security - APs page

To change the classification of an AP, select the device, then click the Change category icon and select a new category for the device.

Change classification list for APs

  • If you deploy new Authorized APs, you do not have to deactivate intrusion prevention, but you must make sure that newly deployed APs are classified as Authorized.
  • Enable Intrusion Prevention only after your wireless deployment is stable and fully configured. For more information, see Configure Intrusion Prevention.
  • If you modify your wireless deployment, disable Intrusion Prevention temporarily to avoid mis-classification and network disruption during the transition phase to your new deployment configuration.

Activate Intrusion Prevention

To activate intrusion prevention:

  1. Select a specific location on your location tree.
  2. Select Configuration > WIPS > Intrusion Prevention Activation.
  3. Select the Activate Intrusion Prevention for Location check box.
    Make sure the correct location is specified.
  4. Click Save.

Intrusion Prevention Activation page