A healthcare organization notices many rogue APs and is concerned about a honeypot attack. Which configuration must a wireless network engineer perform in Cisco Prime Infrastructure to prevent these attacks most efficiently upon detection?
A.
Set the auto containment level to 0 and select the Using Our SSID containment option.
B.
Set the manual containment level to 4 and select the Ad Hoc Rogue AP containment option.
C.
Set the auto containment level to 0 and select the Ad Hoc Rogue AP containment option.
D.
Set the auto containment level to 4 and select the Using Our SSID containment option.
To prevent honeypot attacks most efficiently, the wireless network engineer should set the auto containment level to 4 and select the Using Our SSID containment option (D). This configuration allows the system to automatically contain rogue APs that are spoofing the organization’s SSID, which is a common tactic in honeypot attacks. References: CCNP Enterprise Wireless Design ENWLSD 300-425 and Implementation ENWLSI 300-430 Official Cert Guide.
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit