topic IdentiFi Controller f/w 8.21.05.0005 detects Local Authorized APs/BSSIDs as Spoofed in FAQs https://community.extremenetworks.com/t5/faqs/identifi-controller-f-w-8-21-05-0005-detects-local-authorized/m-p/50982#M690 Article ID: 15064 <BR /> <BR /> <B>Products</B><BR /> C20, C25, C4110, C5110, C5210, V2110; firmware 8.21.05.0005, 8.21.06.0006<BR /> IdentiFi (formerly Enterasys, HiPath) Wireless Controller <BR /> <BR /> <B>Symptoms</B><BR /> Some known BSSIDs are marked as Spoofed, Internal Honeypot, or Rogue.<BR /> In some cases the radios of the threat-designated Access Point (AP) are disabled. <BR /> <BR /> <B>Cause</B><BR /> Several variations of this issue can yield largely the same symptoms. <BR /> <BR /> <B>Solution/Workaround</B><BR /> Upgrade to firmware 8.21.07.0006 or higher. <BR /> <A href="https://extranet.enterasys.com/downloads/Pages/WirelessControllers.aspx" target="_blank" rel="nofollow noreferrer noopener">Release notes</A> state, in the 'Changes in 8.21.07.0006' section:<BR /> <DIV class="threadCode"><B>code:</B><PRE spellcheck="false">wns0008416</PRE></DIV> <DIV class="threadCode"><B>code:</B><PRE spellcheck="false">Corrects an issue that could result in a false positive event whereby an authorized AP is mis-classified as a threat.</PRE></DIV><BR /> <BR /> Pre-upgrade workaround: <BR /> <OL> Identify the false threat items in the Active Threats Report. <LI>Add them to the friendly list. </LI><LI>Go to the Radar-&gt;Maintenance-&gt;Friendly page and make them Authorized. </LI><LI>Check on the Radar-&gt;Maintenance-&gt;Authorized page that the BSSIDs/MACs are there.</LI></OL> Sat, 16 Nov 2013 06:39:00 GMT FAQ_User 2013-11-16T06:39:00Z IdentiFi Controller f/w 8.21.05.0005 detects Local Authorized APs/BSSIDs as Spoofed https://community.extremenetworks.com/t5/faqs/identifi-controller-f-w-8-21-05-0005-detects-local-authorized/m-p/50982#M690 Article ID: 15064 <BR /> <BR /> <B>Products</B><BR /> C20, C25, C4110, C5110, C5210, V2110; firmware 8.21.05.0005, 8.21.06.0006<BR /> IdentiFi (formerly Enterasys, HiPath) Wireless Controller <BR /> <BR /> <B>Symptoms</B><BR /> Some known BSSIDs are marked as Spoofed, Internal Honeypot, or Rogue.<BR /> In some cases the radios of the threat-designated Access Point (AP) are disabled. <BR /> <BR /> <B>Cause</B><BR /> Several variations of this issue can yield largely the same symptoms. <BR /> <BR /> <B>Solution/Workaround</B><BR /> Upgrade to firmware 8.21.07.0006 or higher. <BR /> <A href="https://extranet.enterasys.com/downloads/Pages/WirelessControllers.aspx" target="_blank" rel="nofollow noreferrer noopener">Release notes</A> state, in the 'Changes in 8.21.07.0006' section:<BR /> <DIV class="threadCode"><B>code:</B><PRE spellcheck="false">wns0008416</PRE></DIV> <DIV class="threadCode"><B>code:</B><PRE spellcheck="false">Corrects an issue that could result in a false positive event whereby an authorized AP is mis-classified as a threat.</PRE></DIV><BR /> <BR /> Pre-upgrade workaround: <BR /> <OL> Identify the false threat items in the Active Threats Report. <LI>Add them to the friendly list. </LI><LI>Go to the Radar-&gt;Maintenance-&gt;Friendly page and make them Authorized. </LI><LI>Check on the Radar-&gt;Maintenance-&gt;Authorized page that the BSSIDs/MACs are there.</LI></OL> Sat, 16 Nov 2013 06:39:00 GMT https://community.extremenetworks.com/t5/faqs/identifi-controller-f-w-8-21-05-0005-detects-local-authorized/m-p/50982#M690 FAQ_User 2013-11-16T06:39:00Z